market trends

It is cool to be cool vendor!

It’s official since few days, Gartner announced CommonIT as a Cool Vendor on Cloud Services Brokerage Enablers Market!

For more information, check out the “Cool Vendors in Cloud Services Brokerage Enablers, 2012” report.

Having shunned the rest of the mobile communications industry at Mobile World Congress in Barcelona last month, Apple has finally announced the third iteration of the iPad. From our point of view, the good news is it still won’t run Flash. But putting CommonIT’s business opportunity to one side for a few minutes, what does this version offer enterprise users?

Very little, in fact. The key new features are essentially a quad-core graphics processor and a higher-resolution display. We’re not going to sneer at improved performance and higher visual impact, but these improvements still target, quite clearly, the consumer market. Basically your games will run faster and smoother, and you can watch HDTV. There’s the 4G/LTE communications, too, but try finding an operator in Europe…

None of which means the CIO can safely ignore the product. When Steve Jobs unveiled the original iPad just two years ago, Apple rocked the consumer tech market and simultaneously opened up a whole new set of challenges for the corporate IT director already struggling to manage executives and their iPhones. BYOD is here to stay, even if the technology and policies to manage BYOD in the corporate environment are still evolving.

The real challenge, though, is elsewhere. The consumerization of IT isn’t just about the devices your employees are bringing into the office. The user interface is changing, too. Business applications today are all designed around a three-way user interface dating from the mid-1980s: video, keyboard, mouse. But the keyboard and mouse have disappeared from consumer devices. User expectations are evolving, quickly, to tactile, point-swipe interaction. Before long, the mouse and keyboard will make as much sense to your end users as a rotary telephone dial. How are enterprise applications going to adapt?

It’s always a pleasure to spend a few days in Barcelona. Though when it’s for Mobile World Congress, the tapas and nightlife give way to the exhausting reality of navigating some 1500 exhibitors sprawled over an area about twice the size of Camp Nou, Barcelona FC’s vast stadium.

On the opening day of this year’s Mobile World Congress Telefónica, the Spanish operator, joined Mozilla to announce the Open Web Devices platform, with a reference mobile phone architecture allowing HTML5 applications API access to core device capabilities — paving the way for pure HTML5 smartphones. Mozilla demonstrated the technology at the show on a Samsung Galaxy S2 stripped of its Android OS by Mozilla engineers.

The Mozilla Foundation first started talking about Boot to Gecko last summer. The idea is to offer a native web environment for mobile devices, similar to Google’s Chromebooks, a model Google isn’t (yet?) bringing to mobiles because that’s where Android goes. So what will your next smartphone be running — iOS, Android, Windows, or Gecko? And will your tablet be running the same OS?

Our take? From the enterprise point of view, rather than representing a step to increased standardization, this is more likely to be one more level of fragmentation in the market. And one more reason for an enterprise browser solution, capable of standardizing enterprise usage and enforcing policy whatever device is in the hands or on the desk of the end user.

A recent report from IDG Connect, iPad for Business Survey 2012 (needs registration to download) offers a fascinating insight into iPad take-up in the enterprise environment. The iPad for Business Survey focuses on professionals and their relationship with the iPad. Is it primarily a business tool, or an extension to personal usage? Who pays – user or employer?

Survey results show some interesting variations from continent to continent. If 2011 was the year BYOD took off, 2012 is shaping up to be the year corporate IT starts getting the tools to manage and discriminate professional and personal usage on unmanaged personal devices.

Google started it. When Google launched the Chrome browser some three years ago, one of the key security features was automatic updating. New code releases are downloaded in the background while the browser is running, and applied the next time the user re-starts the browser.

Google argues that this boosts security, compared with the splash screens and user dialogs of other browsers. Faced with the choice of (1) waiting for update code to download, waiting for the update to install, and waiting for the browser to restart, or (2) clicking “Cancel” and continuing to the page they wanted to reach when they launched the browser, many (too many) users choose option 2. The result? Out-of-date browser versions with unpatched security vulnerabilities.

Microsoft has now announced the introduction of silent updating for Internet Explorer, and Mozilla expects to bring out silent updates for Firefox in an as-yet unspecified future release.

Not everybody’s happy. Enterprise IT operations, particularly end-user support teams, will be in the front line when users find themselves unable to access a business-critical application which turns out not to be compatible with the latest version of the user’s favorite browser.

As long as users were primarily sat in front of corporate-issue MS Windows desktops, updates were under the control of the IT department. New browser releases could be tested against business applications for compatibility before being deployed to the desktop. In the age of BYOD, however, support and maintenance of the end-point environment is in the hands of the user; you can’t impose a locked-down corporate configuration on a device owned by the employee.

AirShip, the enterprise browser, has been designed to give control back to the IT department. The AirShip browser can be installed on a range of end-point technologies. It supports concurrent execution of multiple browser configurations, centrally managed and deployed to end user devices. With AirShip, the user connects to enterprise applications using the optimum browser release and configuration as defined by the system administrator. And AirShip can happily coexist with industry-standard browsers, so end-users can enjoy the latest release of their favorite browser for personal use while AirShip delivers a managed environment for professional use.

Launched on the US market mid-November, the Amazon Kindle Fire tablet has yet to cross the Atlantic. With its 7” display, a mere 8GB storage capacity, and WiFi but no 3G connectivity, it’s unlikely to be seen as an adequate alternative for a BYOD iPad in the corporate environment.

What’s got us interested in a device that clearly targets the consumer market (why else launch it just in time for Christmas?) is Silk, the native web browser. To quote from Amazon’s web site:

“Amazon Silk is a revolutionary, cloud-accelerated browser that uses a “split browser” architecture to leverage the computing speed and power of the Amazon Web Services cloud. Supports Adobe® Flash® Player.”

That last sentence is clearly targeted at the iPad; if you’ve been following us you know how to solve that problem. So what about this “revolutionary, cloud-accelerated browser”, then?

On closer inspection, it turns out that Amazon has adopted very much the same approach to browser architecture that we’ve been offering for nearly three years. Silk, like CommonIT’s AirShip product, selectively executes browser components in the cloud, streaming the result to the device. When we originally developed this approach for the Virtual Browser product, the objective was to deliver a highly secure web browser by isolating browser execution from the end point device. We quickly saw that this also offered the opportunity to boost browser performance compared with a natively executed browser, especially on older or less powerful devices such as battery-powered mobiles and tablets.

Amazon has taken the same approach for performance reasons. Amazon, of course, has a cloud ready to use for this. So the cloud-based browser, an approach originally developed by CommonIT, is now going mainstream. It’s nice to have company! But if what you need is a browser for enterprise deployment, offering centralized management, multi-platform support (user and server side), directory integration, multiple concurrent browser configurations… there’s still only one solution.

gPartner positions itself as a new generation of consultant, distributor and integrator for the SaaS market. Based in Paris and Lyon (France), gPartner is one of Google’s leading partners in the French market for the Google Enterprise family of products and services, with the expertise to integrate Google technologies in the core of the enterprise IT environment.

Seeking new ways to accelerate customer migration to online services, gPartner has turned to commonIT. With our Virtual Browser solution, the enterprise retains full control over end-user access to Cloud services through full management of the browser. Whether the need is for access and content filtering for security reasons, support for diverse end-point platforms and application environments, or to deliver transparent connectivity for end-users, Virtual Browser delivers performance and affordability.

The partnership with gPartner reinforces our positioning in the Cloud Services Brokerage market segment, where Virtual Browser facilitates and accelerates enterprise migration to Cloud Computing.

In Gartner’s “Hype Cycle for Cloud Computing 2010″*, analysts David Cearley, Benoit Lheureux and Daryl Plummer present the “Cloud Brokerage”. This market is focused on technologies and services that improve security while reducing cost and complexity in cloud services access and management. This market presents a high potential and proliferates as cloud services consumers seek to simplify and improve their consumption of cloud services across multiple cloud services providers. In its “Hype Cycle” Gartner identifies commonIT as one of the seven sample vendors.

*Gartner, Inc. Hype Cycle for Cloud Computing, 2010, David Mitchell Smith, July 27, 2010.

The Cyberdefense security solution developed and introduced a few months ago by commonIT partner Hermitage Solutions is an outsourced SaaS-style “Security as a Service” offering. Targeting small and medium businesses, Cyberdefense offers a full range of security functions, resolving the increasingly complex technical challenges faced by SMBs with an end-to-end security solution delivering legal and regulatory compliance and even an insurance policy.

Hermitage Solutions has chosen our Virtual Browser technology as part of the Cyberdefense offering. Under an OEM agreement Hermitage and commonIT have integrated Virtual Browser as a component of the SaaS platform. The result for Hermitage is a simple, secure, and cost-effective response to customer needs for mobile and remote access. Cyberdefense users get remote Intranet and Windows desktop access (physical or virtual), using any available machine, easily and securely.

With the Cyberdefense offering Hermitage Solutions positions itself as a Managed Security Services Distributor (or MSSD), with Cyberdefense being offered through Hermitage’s reseller network.

The browser is an integral element in the corporate Cloud strategy. The broad take-up of web technology with standardized languages and protocols has resulted in the browser taking on the role of a universal client for end-user access to web-based and cloud-based resources. Browsers are free, and everyone knows how to use one. Pretty compelling arguments when budgets are tight!

But is using an industry standard browser really a zero-cost proposition for the enterprise? Let’s take a look at some of the issues.

Consumer-driven technology. The browsers we’re all familiar all obey one fundamental design principal: they must be as easy to use as possible for the greatest number of users. They must not hinder the user’s interaction with the web and the sites they want to visit – no matter what content those sites are hosting. In response to the Web 2.0 drive to increased user interactivity with rich internet applications, the browser transparently downloads and executes “helper” applications (Ajax, Flash, Java, ActiveX for example). In other words, the configuration of the browser is unstable and unmanageable. Is this really what you want from a key element of the corporate information infrastructure, the user interface to business critical applications?

Insecure design. Security professionals are increasingly aware that browsers are inherently insecure. The problems are threefold: (i) the browser, like any complex software environment, will always be exposed to bugs and vulnerabilities; (ii) the browser, connected to the internet, is inherently more exposed to external threats than software operating primarily locally on the machine, with local data; (iii) the browser’s self-modifying architecture (via plugins, for example – see above) multiplies the two preceding security risks.

No protection for confidential data. The end user connecting to enterprise Cloud services from home or from a cybercafé using the locally-installed browser is a threat to the enterprise. Business-critical processes and data may be exposed, via the browser, to a PC over which the enterprise has no control. Even if the user is sufficiently security-aware (and technically competent) to clear the browser cache and history at the end of each session – and how many of your users are? – sensitive data may still be stored locally (Flash cookies, to give just one example, without going into spyware and other threats).

If corporate IT management is to take full control of the cloud computing environment, we need to rethink the client-side connection. A new browser architecture is needed, secure by design, protecting corporate IT resources against web-based threats.

For more about the security issues of the browser and the Cloud, take a look at our White Papers.