I am thinking about opening my own shop, distinguished by digitally sovereign offerings, for instance, Stormshield over Cisco, Proxmox over VMware, Matrix/Element over Microsoft Teams, Nextcloud over SharePoint...

I've been doing m365 and azure for more than three years by now and I just feel terrible. Especially regarding some of our customers, which are small gGmbH (kind of NGO). Instead of making a secure, privacy focused offering we just sell them the usual m365 package. We basically push them into the data industrial complex just to get some collab tools and mail.

▲

lormayna a day ago | parent | next [-]

> Stormshield over Cisco

Stormshield is a very good product but it's mainly designed for industrial scenarios and lacks some features that are essential for an enterprise NGFW (i.e. the protocol inspection covers very few protocols compared to PA/Checkpoint/etc). Unfortunately the enterprise NGFW scenario is dominated by US or Israeli companies, even if some niches brands like Stormshield for OT and Clavister for telcos are Europeans

	▲	w34 13 hours ago \| parent [-]
		Stormshield firewalls offer a plethora of IPS protections and signatures, not just OT related ones. There are different licenses, offering varying protections and signatures. Stormshield firewalls can certainly be used in enterprise settings. OT environments are an added bonus where Stormshield firewalls can be used as a protective layer. Stormshield's IPS is its major strength, being very well integrated in the overall firewall design. The whole firewall rulebase is designed in terms of its IPS; I am not aware of any firewall on the market that has such a nicely integrated IPS. Also, at the point where one runs out of IPS options to configure, whereby I'm not referring to signatures in the general sense of the term, and one also has adapted all of Stormshield's available signatures to the needs of the particular environment, the real fun of creating new custom IPS signatures begins. Stormshield's roots date back to 1998's NETASQ, and so I would say they are of a similar pedigree as Check Point, in terms of their history. Disclaimer: I'm a Stormshield Platinum Partner and hold a CSNTS.

▲

limagnolia a day ago | parent | prev | next [-]

What makes StormShield "digitally sovereign"? The other names you mention are open source- but from what I can tell, StormShield is not?

	▲	w34 13 hours ago \| parent [-]
		StormShield are a French company, and a subsidiary of Airbus. So I guess "digitally sovereign" in the European Union could mean using a combination of GPL style free, open source (BSD and other similar licences), proprietary European "homegrown" products. I guess Genua is another good contender in this market.

▲

candu 17 hours ago | parent | prev [-]

TBH there will likely be a _huge_ demand for "digital sovereignty consulting" over the next while, especially in the EU (and maybe also Canada).

Here in Denmark, the previously unthinkable is happening: because of Schleswig-Holstein's leadership in moving to OSS, the Danes are now seeking to learn from the Germans (or at least, that particular set of Germans) about digitalisation! That trend, plus the Danish government's all-in-on-vendors/consultants approach to digitalisation, will likely open a sizeable market - and the traditional vendors like Netcompany have taken a large beating in public opinion themselves, so it's a good time to start something in this direction.

And at the Digital Tech Summit in Copenhagen this year, digital sovereignty (and the lack thereof) was a very prominent theme across both public and private sector talks. As was the comparative advantage the EU has in _trust_, and how that helps e.g. businesses around cybersecurity, privacy-oriented SaaS, and data management expand even outside the EU - which makes it extra infuriating to see continued political interest in things like Chat Control and cracking down on GrapheneOS. This trust is IMHO pretty much the only advantage the EU has in the global tech marketplace, and we're busy throwing it away.