skip to main content
Close Icon We use cookies to improve your website experience.  To learn about our use of cookies and how you can manage your cookie settings, please see our Cookie Policy.  By continuing to use the website, you consent to our use of cookies.
Global Search Configuration

Ovum view


Dell has announced its entry into the sandbox security sector. The Dell SonicWALL Capture Advanced Threat Protection Service will offer a three-pronged, multi-engine sandboxing service. Dell’s cloud-based service, which is currently in the final beta stages, is scheduled for general release in July this year.

Being late to market has its advantages

Dell will be a late entrant to the already mature sandboxing sector when its Capture Advanced Threat Protection Sandbox service goes live in July. The initial release, which will be an additional component to the company’s next-generation firewall (NGFW) facilities, will be available as a cloud-based service. A further release, covering file and attachment protection for email, is expected toward the end of the year.

The drivers for Dell focus on the addition of extra layers of protection to its existing NGFW inspection facilities. The increasing use of encryption is a factor. In 2015, about 65% of enterprise traffic was encrypted, and while malware can be hidden in both encrypted and unencrypted files, encryption makes it harder to detect.

Coming late to the sandboxing market may not be seen as the best approach, but it does have its advantages. Dell has been able to consider what does and doesn’t work, and will be looking to address these issues from day one. For example, today’s advanced threats are designed to evade sandbox analysis and detection. Dell’s response is to offer a three-pronged approach, consisting of three sandbox engines running in parallel to detect malware, with a view to making detection faster and more inclusive. The Dell SonicWall sandbox will be supported by best-of-breed offerings from Lastline and VMRay, all of which have the ability present themselves as physical hardware to fool sandbox-evading malware.

The theory is that malware that can get past one sandbox is likely to be found by one of the others. Suspicious files will be held at the gateway until given a clean bill of health by the sandbox function, and rejection will generate remediation signatures for rapid distribution (within 48 hours) to the Dell Security client network.


Further reading

Lastline Inc - Advanced malware protection from the cloud or on-premise, IT0022-000219 (October 2014)

“Cybercrime and Fraud - Online life facilitates criminal subterfuge”, IT0022-000581 (January 2016)


Andrew Kellett, Principal Analyst, Infrastructure Solutions

Recommended Articles

  • Consumer & Entertainment Services

    US pay TV: Is it facing an existential threat?

    By Adam Thomas 28 Mar 2018

    With US pay TV having endured the worst year in its history, thoughts have inevitably turned to the future. The likelihood remains that the immediate future will remain highly uncomfortable for everyone except the scaled multinational digital platforms.

  • Enterprise Decision Maker, Enterprise IT Strategy and Select...

    2017 Trends to Watch: Big Data

    By Tony Baer 21 Nov 2016

    The breakout use case for big data will be fast data. The Internet of Things (IoT) is increasing the urgency for enterprises to embrace real-time streaming analytics, as use cases from mobile devices and sensors become compelling to a wide range of industry sectors.

    Topics Big data and analytics IoT

  • Service Provider Markets, Consumer & Entertainment Services,...

    MWC 2018 Highlights

    By Ronan De Renesse 27 Feb 2018

    Over 20 of our senior Ovum analysts and consultants attended this year’s Mobile World Congress in Barcelona at the end of February. In between meetings, briefings and presentations, our analyst team were blogging and tweeting about key developments, trends and rumors. Have a look through our daily MWC 2018 Highlights to find out what happened.

    Topics 5G AI IoT Cloud Payments SDN/NFV Smart home


Have any questions? Speak to a Specialist

Europe, Middle East & Africa team - +44 (0) 207 017 7700

Asia-Pacific team - +61 (0)3 960 16700

US team - +1 646 957 8878

Email us at

You can also contact your named/allocated Client Services Executive using their direct dial.
PR enquiries - Call us at +44 788 597 5160 or email us at

Contact marketing -

Already an Ovum client? Login to the Knowledge Center now