Growth Predicted for Web Application Security Products and Services

Market to reach $1.74 billion by 2007, according to a Yankee Group report

Market to reach $1.74 billion by 2007, according to a Yankee Group report

Boston — July 7, 2003 — Web application security will be one of the most sought-after segments of the security industry over the next five years, according to the Yankee Group report "Assessing What's Hot in Web Application Security." The analyst firm foresees 65 percent compound annual growth to a $1.74 billion market by 2007.

"Web applications running on open architectures have become breeding grounds for security vulnerabilities," said Eric Ogren, Yankee Group Security and Software Solutions senior analyst. "Security becomes a bigger challenge as enterprises and government organizations embrace Web applications as a cost-effective means to open new revenue-generating product lines, cut the operational expenses of communicating with suppliers, and increase customer satisfaction by improving the convenience of completing transactions."

Ogren went on to say that corporate networks that once were shielded by a security perimeter are now exposed to the world of Internet users. The architectural changes are a direct contrast to the hard-perimeter techniques that dominated security in the 1990s. "There will be fundamental shifts in the layers of defense to make room for prevention, with decisions based on deviations from known positive behavior," he explained. "Host intrusion-prevention products will become essential components in all Web application deployments, and Web application gateways will become common for medium and large-scale enterprises. Web security assessment software will become SOP for network auditing."

The Yankee Group interviewed product vendors and enterprise security managers to identify the characteristics of leading security products. The company scrutinized ways to prevent damage from attacks, manageability, scalability, performance, strategic partnerships within the security community, depth of product offering, working relationships with application and platform vendors, and noteworthy enterprise customer successes.