Random Entry: Violating Drug Patents for the Greater Good
< Blocking Google Tracking | HIV/AIDS Awareness Week >

Patching Snake Oil

On of my readers asked me what I though of Blue Lane technology's Patch Point. Either they have come up with some revolutionary new product or they are spouting marketing speak and selling an IDS.

PatchPoint is a network appliance-based solution that emulates vendor patches inline, which enables servers behind PatchPoint to continue performing as if the appropriate vendor patch had been installed. PatchPoint instantly creates a patched state for critical servers, which means that the vendor patches can be deployed at a later, more convenient time.

Their description of how it works makes it sounds a bit like an IDS with an ActiveFix being a signature. Other than that the site is scant on technical details. If this is an Intrusion Prevention System integrated into a device then that could be a pretty cool idea, but I think they will have trouble providing the same community support as snort and bleeding snort.

But right now the unclear marketing speak makes it look like snake oil.

UPDATE: Thomas Ptacek's Second Rule Of Security Marketing

If your inline network security device claims to provide "virtual patching", the box must use the actual binary patch from Microsoft to do it.

Tuesday, August 23. 2005
Posted by Dominic White in Masters
Comments (3) | Trackback (1)

Last modified on 2005-11-22 00:44

Trackbacks

Trackback specific URI for this entry

Blue Lane Technology's Patch Point
Blue Lane seems to be getting more attention. I found this post through SA's own Dimension Data's blog. I once wrote about Patch Point when a reader asked for my opinion on it. At the time their site had very little information and I suspected that the

Weblog: Dominic White's .tHE pRODUCT
Tracked: Jan 19, 15:47

Comments

Display comments as (Linear | Threaded)

#1 Pukhraj Singh wrote (Link) (Reply)
Posted on Friday, September 30. 2005

Well, it is not a snake oil. As you might have seen, the company emerged out of stealth mode. There are many case studies, whitepapers, press-releases to prove the point. Also, as an ex-developer of PatchPoint and a security enthusiast, I think it easily surpasses any network based protection device available on the market. Yea, any.

#1.1 Dominic White wrote (Link) (Reply)
Posted on Tuesday, November 22. 2005

That's a pretty bold claim. Does it make toast too? Seriously, saying that it can save the world doesn't make it look anything less like snake oil. I did provide for the possibility that it isn't, however their initial information was scant and riddled with made-up terms.

#2 Pukhraj Singh wrote (Link) (Reply)
Posted on Sunday, January 8. 2006

Hmmm..i am impartial to PR stats. My point was firmly and solely based on the technical capabilities of the appliance. Anyways, I am out of the whole venture as you know and I am equally curious on how the company will fare, as I know what world-class device we made. The patch-proxy thing has been picked by media and technical whores alike. Determina is into it and so are other IDP companies.

Add Comment

Name
Email
Homepage
In reply to
Comment	E-Mail addresses will not be displayed and will only be used for E-Mail notifications. To prevent automated Bots from commentspamming, please enter the string you see in the image below in the appropriate input box. Your comment will only be submitted if the strings match. Please ensure that your browser supports and accepts cookies, or your comment cannot be verified correctly. Enter the string from the spam-prevention image above:
	Remember Information? Subscribe to this entry