Cisco grabs IronPort for $830m

Cisco has acquired internet gateway security company IronPort for $830m.

Cisco plans to expand its product range by integrating technologies from IronPort that complement its existing switch and router product lines, especially Cisco network access control (NAC), which uses the systems' infrastructure to enforce security policy for all devices seeking to access the network.

Richard Palmer, senior vice president of Cisco's Security Technology Group, said in a statement: "We feel there is enormous potential for enhanced email and message protection solutions to be integrated into the existing Cisco self-defending network framework [NAC].

"Using the network as a flexible platform to integrate IronPort's technologies, Cisco will be able to build new security applications as customers' demands evolve."

Cisco is paying a combination of cash and stock, and the deal is expected to close in the fiscal third quarter of 2007. The acquisition is subject to various standard closing conditions.

IronPort, which sells email security appliances that filter email by sender reputation, as well as web security and security management products, will become a Cisco unit. Upon close of the transaction, the IronPort team and product portfolio will operate as a business unit in Cisco's Security Technology Group, reporting to Palmer.

Analysts see the acquisition as a positive step. Peter Firstbrook, research director at Gartner, said both companies will benefit. Cisco will get a sender-based email reputation platform, while IronPort plans to expand its reputation based approach into the IP reputation of web server traffic.

Firstbrook said: "Absolutely it's a positive move for both companies. IronPort gets Cisco customers to sell to, which opens up a strong channel for them."

Rachel Brindley of Canalys said Cisco would benefit from selling to IronPort customers, as it gives them a presence in the specialist security distribution community.

Brindley said IronPort would also benefit from being part of a larger organisation because of the ongoing consolidation of the security market.

She said: "There have been so many acquisitions in the security space - IBM and ISS, EMC and RSA - that it's difficult for smaller security vendors not to have a wider portfolio. Security vendors with a single solution will find it difficult to generate as a long-term value proposition."

Tom Espiner writes for ZDNet UK