Service Providers Jump on VPNs
It appears VPN services may finally be making some headway into the service-provider space, for the first time since equipment vendors began hyping them. According to Infonetics Research Inc., dedicated VPN hardware revenues totaled $1.3 billion in 2001 and are forecasted to reach $2.9 billion in 2005. But until recently, most of the action in VPNs has been in the enterprise. Few service providers were purchasing gear and offering services.
Now, as more and more customers become concerned about network security, VPNs are becoming de rigueur. As a result, carriers like Sprint, SBC, and Verio have jumped into the mix.
Network security isn’t the only driving force behind VPN adoption, says Mike Volpi, senior vice president of the Internet switching and services group at Cisco Systems Inc. (Nasdaq: CSCO). He says VPNs are becoming popular because enterprise end-users are becoming more mobile. VPNs allow traveling workers or telecommuters to securely hook into their corporate networks.
"When people typically think of mobile IP services they think of 2.5G and 3G wireless," he said. "But IP VPNs also play a major role in mobility. And we’ve found this to be one of our fastest growing markets."
The rollout of VPNs seems to be occurring in three phases. In the first phase, which is well underway, large enterprises have built their own VPN networks in order to securely connect multiple sites together. The second phase consists of a fully managed service from a carrier, but still requires hardware and software to be deployed on the customer site. The third phase of deployment will center around network-based VPNs that are fully based on a carrier’s network, without the need for customer equipment.
The announcements made this week are prime examples of the second and third phases of deployment. For instance, Verio announced it would be deploying VPN gear at customer sites to provide its new Global IP Security Gateway. And SBC announced plans to launch three services: The first requires software to be installed on the customer site, the second uses CPE devices from Cisco, and a future service will deploy a network-based VPN service.
Sprint, like SBC, announced multiple VPN offerings this week. It will begin offering a network-based VPN service and a Frame Relay IP VPN service starting May 15th. The carrier is using the CoSine Communications Inc. (Nasdaq: COSN) IPX 9500 to provide the network-based VPNs (see CoSine Supports Sprint VPN).
"There’s a huge value proposition for service providers to move to network-based VPNs," says Michael Howard, principal analyst and founder of Infonetics Research. "Basically, they don’t have to fuss with deploying gear at the customer site. They can easily upgrade and add additional services to customers without having to do massive truck rolls."
While network-based VPNs may one day dominate the VPN scene, the reality is that most enterprise customers are still not ready to turn their security over to their service providers.
"There’s no doubt that the cost savings and the technology are there," says Howard. "Now it’s about getting the enterprise to trust their carriers."
This is why Sprint also announced an IP VPN service running over its existing frame relay network. Essentially, Sprint is upgrading its installed base of Passport WAN switches from Nortel Networks Corp. (NYSE/Toronto: NT) with software that will allow it to create a fully meshed network.
"We’ve learned that you can’t offer just one flavor of VPN service," says Barry Tishgart, director of product management for Sprint. "I think that was the mistake we all made in the beginning."
Turning up the VPN service on the Passports was fairly simple for Sprint. All that was needed for this service was to upgrade the switches already in the field. Tishgart says it was just one way that the company could offer a new service without having to put too much out in terms of capital.
Cisco’s Volpi says that VPNs are still in the very early stages of deployment and that it will take time before customers will fully embrace the technology that is available.
"Yes, we’re seeing a lot more network-based VPN services announced," he says. "But has it hit the mainstream yet? No. Enterprises are just now starting to ask service providers to manage different services for them."
— Marguerite Reardon, Senior Editor, Light Reading