Linked by Thom Holwerda on Thu 19th Aug 2010 17:54 UTC, submitted by poundsmack
Intel Chalk this one up on the 'uh, what?'-list of acquisitions. Intel announced today that it has acquired Mcafee, the security and antivirus company we all know and love. The press release is a bit vague on why, exactly, Intel made this rather odd acquisition.
Permalink for comment 437563
To read all comments associated with this story, please click here.
Member since:

My thought is that this is about two things:

1. The patents. McAfee has a patent portfolio that includes the following: - Virus Scanning of a Storage Subsystem

2. Their products for high-speed network scanning and data loss prevention, and their enterprise products. Consumer software is a low-yield investment. I would be surprised if McAfee made a significant amount of money from actual consumer product sales as opposed to bundling.

However, McAfee gets a ton of money from ePolicy Orchestrator, Safeboot, their DLP products, IntruShield, their firewall products, and their server-side products for Microsoft Exchange and SMTP that quietly sit on millions of corporate PCs and ring up consistent dollars in support fees every year.

Symantec, on the other hand, released Endpoint Protection for the enterprise, which had major deployment and adoption issues because it was the integration of the Symantec AV software with the Sygate personal firewall software they acquired, and they did not go well together. They also bought Vontu for their DLP software, which is still top of the class despite their best efforts.

IBM just introduced ISS for VMWare. It's an excellent product that provides IDS/IPS for virtual machines at the hypervisor level.

Intel is probably going to go after Symantec by tightly integrating the McAfee engine into the AV, DLP, and encryption products, and having one tool that allows AV, IDS, IPS, DLP, and Safeboot updates in ePolicy Orchestrator, as opposed to the travesty known as LiveUpdate. The fact that everything will be integrated and work with Intel CPUs will also help significantly, as Intel can control the entire software/hardware stack in ways that only two other companies can, Oracle and IBM. Oracle doesn't have much interest in endpoint security these days, and IBM has ISS. Intel will make their software work better with their chips and chipsets for the products that quietly sell for 6 figures a pop to large companies, and Safeboot, which is bought by the truckload. Any company selling full disk encryption software really needs to worry right now!

Secondly, I expect Intel/McAfee to announce virtual machine security products to directly compete with IBM ISS's SiteProtector, but that will work cross-platform (VMWare, Xen, KVM, SWSoft Virtuozzo/Parallels) and at a very low level.

Third, I expect Intel to start integrating hooks for security products into the lowest level of their device drivers for their networking products, which are actually quite good. Remember that a lot of systems administrators will use the Intel cards and turn off the OEM Broadcom cards on Dell or HP servers because they don't have bad drivers. This is going to provide for offload of security products onto the card, which will be a big help with 10G and 100G network scanning. This is something that you would only ever hear about Cisco pulling off, and they don't have the skills at making chips that Intel does. Cisco still depends on Freescale for the chips they need for their routers. Do not be surprised if more Intel chips show up in Cisco products, or if Intel re-invigorates McAfee's network-based IDS/IPS tools to work better with 10/100G Ethernet with customized appliances capable of scanning that much data, and beats them to market with better tools.

I think there was a bidding war. I think that one of the other players was Cisco, and another was IBM. I think Cisco wanted the patents and to integrate their network-based IDS/IPS tools into their product line, as did IBM (who did spend $1B+ on ISS).

Intel just made a big announcement to the world that they're going to start playing more heavily in network-based security, and that they think that the integration of their knowledge of microprocessor and network processor design with relatively good network scanning software and the required patents is going to allow them to build better products that are going to let them stand up against Symantec, m86 Security, Cisco, and IBM.

Reply Parent Score: 6