Palo Alto Networks founder: Our competitors are on 'death row'

LAS VEGAS -- Palo Alto Networks founder and CTO Nir Zuk took to the stage to deliver the closing keynote address at the company's first-ever user conference here by trumpeting his company's success in firewall innovation and what he described as his competitors' weak attempts to follow.

RELATED: Palo Alto Networks aspires to anti-malware defense role with WildFire

Zuk, an engineer who once worked at Check Point and Juniper, has more than once enjoyed delivering feisty jabs at his former employers which, along with others such as Sourcefire and Cisco, have come to develop application-aware firewalls that compete with Palo Alto's next-generation firewalls (NGFW). But yesterday in his keynote address, Zuk pulled out all the stops and lambasted his competitors, whom he ridiculed as being on "death row" in terms of their ability to compete against Palo Alto.

"They do what all inmates do, file appeals," Zuk said. He said competitors' products with NGFW application-layer controls can only be considered "lipstick on a pig," a statement illustrated on the movie-size screen behind him on stage by a pig with bright red lips.

Israeli-born Zuk then turned to his native language, Hebrew, to dismiss them all with a biblical expression, saying their fate in the NGFW market can be summed up as "Let me die with the Philistines," the cry of Samson as he pulled the temple down around him. He added: "It sounds better in Hebrew."

But that was just for starters. Zuk continued his rant against Check Point, claiming this rival is offering 85% discounts to customers to take their firewall products, basically saying they "give away products for free" because of Palo Alto's success. Check Point "truly believes they do what Palo Alto does," he said, dismissing Check Point as weak in the area where Palo Alto has focused, application-aware firewalls.

Zuk then turned his attention to a new class of competitors, firms that offer specialized anti-malware services and products, including Damballa, Sourcefire and FireEye. He ran through a list of perceived shortcomings in how they might detect malware and provide prevention, an exercise clearly intended to promote Palo Alto's own WildFire anti-malware service associated with its NGFW.

Palo Alto's growing focus on making its NGFW the place in the enterprise network to manage security in a range of ways was highlighted by Zuk's brief remarks that, as far as the future goes, there's thought being given to how mobile device malware detection could be done well on the network rather than via scans on the device itself. But he left it at that, saying there are a few technology areas that Palo Alto does not see getting into: Web application firewalls or full-featured data-loss prevention.

Ellen Messmer is senior editor at Network World, an IDG publication and website, where she covers news and technology trends related to information security. Twitter: @MessmerE. Email:

Read more about wide area network in Network World's Wide Area Network section.

Join the CSO newsletter!

Error: Please check your email address.

Tags Check Point vs. Palo Alto NetworksNir Zuksourcefirepalo alto networksFirewall & UTMnext-generation firewallsecurityNGFW

Show Comments

Featured Whitepapers

Editor's Recommendations

Solution Centres

Stories by Ellen Messmer

Latest Videos

  • 150x50

    CSO Webinar: Will your data protection strategy be enough when disaster strikes?

    Speakers: - Paul O’Connor, Engagement leader - Performance Audit Group, Victorian Auditor-General’s Office (VAGO) - Nigel Phair, Managing Director, Centre for Internet Safety - Joshua Stenhouse, Technical Evangelist, Zerto - Anthony Caruana, CSO MC & Moderator

    Play Video

  • 150x50

    CSO Webinar: The Human Factor - Your people are your biggest security weakness

    ​Speakers: David Lacey, Researcher and former CISO Royal Mail David Turner - Global Risk Management Expert Mark Guntrip - Group Manager, Email Protection, Proofpoint

    Play Video

  • 150x50

    CSO Webinar: Current ransomware defences are failing – but machine learning can drive a more proactive solution

    Speakers • Ty Miller, Director, Threat Intelligence • Mark Gregory, Leader, Network Engineering Research Group, RMIT • Jeff Lanza, Retired FBI Agent (USA) • Andy Solterbeck, VP Asia Pacific, Cylance • David Braue, CSO MC/Moderator What to expect: ​Hear from industry experts on the local and global ransomware threat landscape. Explore a new approach to dealing with ransomware using machine-learning techniques and by thinking about the problem in a fundamentally different way. Apply techniques for gathering insight into ransomware behaviour and find out what elements must go into a truly effective ransomware defence. Get a first-hand look at how ransomware actually works in practice, and how machine-learning techniques can pick up on its activities long before your employees do.

    Play Video

  • 150x50

    CSO Webinar: Get real about metadata to avoid a false sense of security

    Speakers: • Anthony Caruana – CSO MC and moderator • Ian Farquhar, Worldwide Virtual Security Team Lead, Gigamon • John Lindsay, Former CTO, iiNet • Skeeve Stevens, Futurist, Future Sumo • David Vaile - Vice chair of APF, Co-Convenor of the Cyberspace Law And Policy Community, UNSW Law Faculty This webinar covers: - A 101 on metadata - what it is and how to use it - Insight into a typical attack, what happens and what we would find when looking into the metadata - How to collect metadata, use this to detect attacks and get greater insight into how you can use this to protect your organisation - Learn how much raw data and metadata to retain and how long for - Get a reality check on how you're using your metadata and if this is enough to secure your organisation

    Play Video

  • 150x50

    CSO Webinar: How banking trojans work and how you can stop them

    CSO Webinar: How banking trojans work and how you can stop them Featuring: • John Baird, Director of Global Technology Production, Deutsche Bank • Samantha Macleod, GM Cyber Security, ME Bank • Sherrod DeGrippo, Director of Emerging Threats, Proofpoint (USA)

    Play Video

More videos

Blog Posts

Market Place