Do We Really Need Another Security Blog?
Welcome to my blog… For the past 15 years, I have been heavily involved in the design and implementation of network security technologies for enterprise networks. In the early 1990s, I was at Check Point where in the process of developing the world’s first commercially successful firewall, I helped create Stateful Inspection, the basis for virtually all network security devices today. Later I co-founded OneSecure, a pioneer in network intrusion prevention. The product I built there is now known as the Juniper IDP. OneSecure was acquired by NetScreen where I became the Chief Technology Officer, continuing to Juniper as the chief security technologist. 3½ years ago I left Juniper to found Palo Alto Networks, a company building a next generation firewall.
Despite what you might think, in this blog I am not going to focus on vendors and products. This blog is about the significant issues and trends that have redefined and are still redefining the requirements for network security in a world where the boundaries between the Internet and enterprise have all but disappeared. The depth and breadth of experience I have gained over the last two decades, combined with extensive interaction with thousands of customers, has given me a unique perspective on a variety of network security issues – both at the business level and the technology level.
My intent with this blog is to put a spotlight on many of these issues, expose them, analyze them, and hopefully share some ideas on how to resolve them. Given my roots on the vendor side, I probably won’t be able to resist the temptation to expose the limitations of outdated technology – including some that I have helped develop! I have strong opinions on many topics, as you will see. But if I go too far, please call me on it. Your perspectives are important. That’s how we all learn and grow together.
So does the industry really need another blog on network security? I think the answer is “Yes”. Join me next time and we’ll start down the path in the search for Security Nirvana.
Nir.
Thanks !
First of all, congratulations on your new blog.
When I started my Information Security career more than five years ago, one of the first books that I read then was about Stateful Inspection Firewalls and Checkpoint’s innovations in that field, and as you have mentioned here you were among the team that was behind such innovation.
The first security products I dealt with then were Juniper NetScreen Firewalls and IDP (They were just NetScreen then), and again you are behind the Inline IPS innovation since your OneSecure days.
And recently I read about Palo Alto Networks NG Firewalls, and it is really very promising device, however I haven’t worked on it yet.
So, here you are three reasons to start following your new blog, and add it to on the top of my daily to-read list.
Hello Nir,
We met at Morton restaurant in Costa Mesa at one of your product demos at the end of 2007. The product is truly innovative. What is the next generation of network security as you survey the field? Currently, a research topic is being sought for my PhD. Any topics in mind?