Risk

5/30/2013
02:01 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Gartner Says Worldwide Security Software Market Grew 7.9 Percent In 2012

Evolution of new threats and working practices is driving spending on security

STAMFORD, Conn., May 30, 2013 -- Worldwide security software revenue totaled $19.2 billion in 2012, a 7.9 percent increase from 2011 revenue of $17.7 billion, according to Gartner, Inc. Gartner said that the evolution of new threats and working practices, such as bring your own device (BYOD), is driving spending on security.

"The 2012 security market saw a continuation of increasing demand for consumer and enterprise security tools as McAfee's high growth of 37% boosted the overall market's growth rebound in 2012," said Ruggero Contu, research director at Gartner. "Although overall, the 2012 security market continued to grow, not all regions experienced the high double-digit growth of, for example, Eurasia, which was driven by greenfield projects and buoyant economies. As expected, Western Europe remained the laggard due to economic uncertainties and fragility and also due to the impact of dollar-to-euro conversion."

While it retained its No. 1 position in the consumer and enterprise security spaces in 2012, Symantec managed only single-digit growth of 2.6 percent to reach $3.75 billion in 2012 (see Table 1). Second-placed McAfee showed significant growth of 37% in 2012 to reach $1.7 billion. This was driven by a combination of organic growth, acquisitions and the indirect impact of a 2011 revenue write-down following Intel's acquisition of McAfee. In third place, Trend Micro, which spent much of 2012 accelerating the diversification of its business with cloud and virtualization platform security and advanced threat protection (ATP) offerings, recorded an overall security revenue decrease of 2.7 percent, with negative growth impacting its consumer and enterprise businesses.

"Security continues to be a top priority across all technology categories in the SMB market. The rise of midmarket demand presents a new challenge for participants in the security space, as SMB requirements are different from those of larger enterprises," said Mr. Contu. "Security buyers from SMBs are increasingly considering security as a service as an alternative for deploying security technologies, particularly for areas such as email and Web security, which is leading to more market consolidation and more competitive pricing as established players acquire pure-play cloud-based specialists across the security landscape."

Spending on security software is also influenced by the evolution of new threats and working practices. For example, as companies increase the mobility of their workforce, this situation raises new security concerns and requirements. Growing demand for remote access requires organizations to safeguard off-premises applications and data, as well as an array of new client devices. In addition, the rapid adoption of virtualization in the SMB market is driving interest in security solutions targeting virtual environments.

More detailed analysis is available in the report "Market Share Analysis: Security Software, Worldwide, 2012." The report is available on Gartner's website at http://www.gartner.com/resId=2486015.

About Gartner Security & Risk Management Summit

Gartner analysts will take a deeper look at the outlook for security solutions at the Gartner Security & Risk Management Summits taking place June 10-13 in National Harbor, Maryland, August 19-20 in Sydney, Australia and September 18-20 in London, U.K. More information on the U.S. event can be found at www.gartner.com/us/security. Details on the Australia event are at http://www.gartner.com/technology/summits/apac/security/. More information on the U.K. event is at http://www.gartner.com/technology/summits/emea/security/.

Members of the media can register for press passes to the Summits by contacting [email protected] (U.S.), [email protected] (Sydney) or [email protected] (London).

Information from the Gartner Security & Risk Management Summits 2013 will be shared on Twitter at http://twitter.com/Gartner_inc using #GartnerSEC.

About Gartner

Gartner, Inc. (NYSE: IT) is the world's leading information technology research and advisory company. Gartner delivers the technology-related insight necessary for its clients to make the right decisions, every day. From CIOs and senior IT leaders in corporations and government agencies, to business leaders in high-tech and telecom enterprises and professional services firms, to technology investors, Gartner is a valuable partner in more than 13,000 distinct organizations. Through the resources of Gartner Research, Gartner Executive Programs, Gartner Consulting and Gartner Events, Gartner works with every client to research, analyze and interpret the business of IT within the context of their individual role. Founded in 1979, Gartner is headquartered in Stamford, Connecticut, USA, and has 5,500 associates, including 1,402 research analysts and consultants, and clients in 85 countries. For more information, visit www.gartner.com.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
WebAuthn, FIDO2 Infuse Browsers, Platforms with Strong Authentication
John Fontana, Standards & Identity Analyst, Yubico,  9/19/2018
Turn the NIST Cybersecurity Framework into Reality: 5 Steps
Mukul Kumar & Anupam Sahai, CISO & VP of Cyber Practice and VP Product Management, Cavirin Systems,  9/20/2018
NSS Labs Files Antitrust Suit Against Symantec, CrowdStrike, ESET, AMTSO
Kelly Jackson Higgins, Executive Editor at Dark Reading,  9/19/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
Flash Poll
The Risk Management Struggle
The Risk Management Struggle
The majority of organizations are struggling to implement a risk-based approach to security even though risk reduction has become the primary metric for measuring the effectiveness of enterprise security strategies. Read the report and get more details today!
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-11763
PUBLISHED: 2018-09-25
In Apache HTTP Server 2.4.17 to 2.4.34, by sending continuous, large SETTINGS frames a client can occupy a connection, server thread and CPU time without any connection timeout coming to effect. This affects only HTTP/2 connections. A possible mitigation is to not enable the h2 protocol.
CVE-2018-14634
PUBLISHED: 2018-09-25
An integer overflow flaw was found in the Linux kernel's create_elf_tables() function. An unprivileged local user with access to SUID (or otherwise privileged) binary could use this flaw to escalate their privileges on the system. Kernel versions 2.6.x, 3.10.x and 4.14.x are believed to be vulnerabl...
CVE-2018-1664
PUBLISHED: 2018-09-25
IBM DataPower Gateway 7.1.0.0 - 7.1.0.23, 7.2.0.0 - 7.2.0.21, 7.5.0.0 - 7.5.0.16, 7.5.1.0 - 7.5.1.15, 7.5.2.0 - 7.5.2.15, and 7.6.0.0 - 7.6.0.8 as well as IBM DataPower Gateway CD 7.7.0.0 - 7.7.1.2 echoing of AMP management interface authorization headers exposes login credentials in browser cache. ...
CVE-2018-1669
PUBLISHED: 2018-09-25
IBM DataPower Gateway 7.1.0.0 - 7.1.0.23, 7.2.0.0 - 7.2.0.21, 7.5.0.0 - 7.5.0.16, 7.5.1.0 - 7.5.1.15, 7.5.2.0 - 7.5.2.15, and 7.6.0.0 - 7.6.0.8 as well as IBM DataPower Gateway CD 7.7.0.0 - 7.7.1.2 are vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote atta...
CVE-2018-1539
PUBLISHED: 2018-09-25
IBM Rational Engineering Lifecycle Manager 5.0 through 5.02 and 6.0 through 6.0.6 could allow remote attackers to bypass authentication via a direct request or forced browsing to a page other than URL intended. IBM X-Force ID: 142561.