????一年一度匯聚美國(guó)頂尖信息安全公司高管的信息安全大會(huì)（RSA Conference）今年引起了不小的爭(zhēng)議（路透社報(bào)道稱(chēng)，信息安全大會(huì)與美國(guó)國(guó)家安全局合作,，在加密產(chǎn)品中留下“后門(mén)”,，以方便政府更容易地竊取用戶(hù)信息。這一消息引起許多專(zhuān)家對(duì)大會(huì)的抵制——譯注）,。不過(guò)無(wú)論規(guī)模大小,，大多數(shù)公司來(lái)到這里，只是為了展示他們?cè)诜婪毒W(wǎng)絡(luò)犯罪方面最新,、最好的技術(shù),。

????這些公司很幸運(yùn)，因?yàn)槿缃褚瞬毮康木W(wǎng)絡(luò)攻擊越來(lái)越多,，使得各企業(yè)在安全工具上的花費(fèi)越來(lái)越高,。根據(jù)研究公司高德納（Gartner）的數(shù)據(jù)，信息安全市場(chǎng)的規(guī)模將會(huì)從去年的約6,700萬(wàn)美元增長(zhǎng)至2017年的9,500萬(wàn)美元,。不過(guò)防火墻——對(duì),，就算是下一代防火墻——和殺毒軟件已經(jīng)不夠用了。這也是為什么思科（Cisco）,、瞻博網(wǎng)絡(luò)（Juniper Networks）這樣的服務(wù)提供商,，還有帕洛阿爾托網(wǎng)絡(luò)公司（Palo Alto Networks）這樣的后起之秀都已經(jīng)開(kāi)始拓展業(yè)務(wù)范圍。

????為了更深入地了解不斷變化的客戶(hù)購(gòu)買(mǎi)模式,，探索更開(kāi)放的新一代“威脅智能感知數(shù)據(jù)”的收集和共享方式,，《財(cái)富》采訪(fǎng)了阿姆農(nóng)?巴勒夫。他是信息安全業(yè)居于領(lǐng)先地位的以色列供應(yīng)商,、Check Point軟件技術(shù)公司（Check Point Software Technologies）的總裁,。

????《財(cái)富》：顧客希望你們做些什么？你在信息安全大會(huì)上聽(tīng)到了什么,？

????巴勒夫：這個(gè)行業(yè)現(xiàn)在有兩大趨勢(shì),。其中之一是從單純的防火墻（依靠防火墻的保護(hù)措施）轉(zhuǎn)變?yōu)楦嗟刈钃跬{。當(dāng)今世界上所有的防火墻提供商都擁有了下一代防火墻,，它已經(jīng)變成了商品,。但是大家已經(jīng)意識(shí)到，光有防火墻還不夠,。所以他們?cè)谄渲屑尤肓嗽絹?lái)越多的技術(shù)——反木馬程序,、各種阻擋威脅的工具、威脅模擬功能,，當(dāng)然還有入侵防御系統(tǒng)（intrusion prevention system）,。

????第二個(gè)趨勢(shì)是明顯的功能整合。我相信人們?cè)?jīng)有過(guò)許多單功能產(chǎn)品,，他們認(rèn)為把它們組合起來(lái)使用是最好的防護(hù)方法,。不過(guò)現(xiàn)在已經(jīng)不同了。我們有著市場(chǎng)上最好的入侵防御系統(tǒng),，而且它不僅是個(gè)專(zhuān)用工具,，還整合了其他防護(hù)功能。我們認(rèn)為它不應(yīng)該是個(gè)功能單一的軟件,。我們預(yù)計(jì)在功能整合方面,，這個(gè)行業(yè)還有大量的發(fā)展空間,。人們?cè)趯で蟾嗟谋Ｗo(hù)，他們的安全感還不夠,。

????哪個(gè)行業(yè)最害怕遭到攻擊,？

????我不知道他們有沒(méi)有害怕，但顯然,，金融業(yè)在應(yīng)對(duì)安全問(wèn)題上可能是最先進(jìn)的一個(gè)行業(yè),。他們?cè)趯ふ液筒捎眯滦桶踩胧┖图夹g(shù)上都走在最前面。排名第二的可能是電信公司,。這些公司擁有兩個(gè)不同的網(wǎng)絡(luò),，運(yùn)營(yíng)網(wǎng)絡(luò)和信息技術(shù)網(wǎng)絡(luò)。他們的信息技術(shù)網(wǎng)絡(luò)與其他的企業(yè)一樣,，不過(guò)非常先進(jìn),。而運(yùn)營(yíng)網(wǎng)絡(luò)的保護(hù)措施嚴(yán)密得多，不過(guò)它一旦遭遇攻擊癱瘓,，就會(huì)變成非常嚴(yán)重的問(wèn)題,。

????不過(guò)，基于IP地址的長(zhǎng)期演進(jìn)技術(shù)（LTE,，第四代無(wú)線(xiàn)技術(shù)）的問(wèn)世給信息安全領(lǐng)域帶來(lái)了巨大變化,。如此一來(lái)，信息安全公司就得保護(hù)基站,，還有各基站之間的連接,，現(xiàn)在他們開(kāi)始采取越來(lái)越嚴(yán)密的安全措施。不過(guò),，我們總共有超過(guò)10萬(wàn)的客戶(hù),，分布在你能想到的任何行業(yè)。

????在人們購(gòu)買(mǎi)的各種各樣的產(chǎn)品中,，哪些是你們沒(méi)有,、而且想要擁有的？

????我認(rèn)為我們擁有大多數(shù)種類(lèi)的產(chǎn)品,。有一種產(chǎn)品叫做網(wǎng)絡(luò)應(yīng)用防火墻,，我們還沒(méi)有在這個(gè)領(lǐng)域施展拳腳。我們正在研發(fā)許多東西,，比如更好地保護(hù)移動(dòng)產(chǎn)品,。

????你是因?yàn)槁?tīng)說(shuō)這方面（移動(dòng)產(chǎn)品安全防護(hù)）存在很大的需求嗎？

????我不知道我有沒(méi)有提到“需求”,，但肯定提到了“議論聲”,。因?yàn)闆](méi)有人能有簡(jiǎn)單直接的辦法解決這個(gè)問(wèn)題。現(xiàn)在的大多數(shù)產(chǎn)品都太容易被入侵了。

????總的來(lái)說(shuō),，安全領(lǐng)域并不是個(gè)公司投資的好選擇,，因?yàn)樗麄兛床坏交貓?bào)，也不知道應(yīng)當(dāng)如何評(píng)估安全領(lǐng)域的回報(bào),。這就像軍隊(duì)一樣——一支軍隊(duì)?wèi)?yīng)當(dāng)葆有多少架戰(zhàn)斗機(jī),？不知道。你得自己去設(shè)想,。安全領(lǐng)域也是一樣。它取決于有多少預(yù)算,，然后把它們花掉,。

????另一個(gè)角度來(lái)看，人們想做他們能做的任何事,，而有時(shí)候安全性和功能性不可兼得,。最大的挑戰(zhàn)之一就是，確保安全防護(hù)能起到促進(jìn)作用,，而不是阻礙作用,。（財(cái)富中文網(wǎng)）

????譯者：嚴(yán)匡正

????

????This year's RSA Conference, an annual gathering of the nation's top information security executives, has already had its share of controversy. But most of the companies in attendance -- both big and small -- are there simply to show off their latest and greatest cybercrime-fighting technologies.

????Lucky for them, the growing number of high-profile cyber-attacks have led corporations to spend more and more on security tools. According to research firm Gartner, the information security market will grow from an estimated $67 billion last year to $95 billion by 2017. But firewalls -- yes, even next-generation firewalls -- and anti-virus software are no longer enough. That's why vendors like Cisco (CSCO), Juniper Networks (JNPR) and newer players like Palo Alto Networks (PANW) are branching out.

????To find out more about customers' changing buying patterns and the rise of new, more open approaches to gather and share threat-intelligence data, Fortune caught up with Amnon Bar-Lev, the president of Israel-based Check Point Software Technologies (CHKP), one of the IT security industry's leading providers.

????Fortune: What are customers asking you for? What are you hearing here at RSA?

????Bar-Lev: There are a couple of trends happening in this industry. One is the move from purely firewall [-based protection] to more threat prevention. All of the firewall vendors in the world today have next-generation firewalls; it really became a commodity. But people understand that firewall is not enough. So they are adding more and more technology into that space -- anti-bots, different threat prevention activities, threat emulation, and IPS ["intrusion prevention system" --Ed.] for sure.

????The second trend is clearly consolidation. I think people used to have a lot of point products because they felt that's the best-of-breed approach. But this has changed. We have the best IPS in the market and it's integrated, not a dedicated box. We don't think it should be a dedicated box. There's a significant amount of growth that we're seeing coming from consolidation. People are looking for more protection, they don't feel secure enough.

????Which industries are most freaked out?

????I don't know if they're freaked out, but clearly the finance industry is probably the most advanced industry regarding security. They're quite advanced in looking for new solutions and technologies and implementing them. Second is probably telcos. They have two different networks, their operation part and their IT part. The IT part is like any other enterprise, but they're quite advanced. Operations are much more conservative, but down time is a very big issue.

????But there was a major change in the industry when LTE [the fourth-generation wireless technology --Ed.] came out, which is all IP-based. So they have to protect base stations and the connection between base stations and now they started implementing more and more security. But we have over 100,000 customers in any vertical you can think of.

????What piece of all of these various products people are buying today do you not have and want to have?

????I think we have most of it. There's something called a web application firewall and we don't really play in this space. There are a lot of things under development now, like to better secure mobile devices.

????Are you hearing a lot of demand for that [mobile device security solutions]?

????I don't know if I'd say "demand," but definitely "buzz." Because nobody has a very simple, straightforward solution to solve this. Most of the things are too much of an intrusion now.

????Overall, security is not a great thing for a business to invest in because they don't see a return and they don't know how to measure a return on security. It's like armies -- how many fighter jets should an army have? You don't know. You build your own assumption. It's the same thing here about security. It depends on how much budget they have and then they spend it.

????From the other side, people want to do everything that they can. and sometimes security and functionality doesn't go together. One of the biggest challenges is to make sure security is an enabler and not a disabler.