Network security must evolve into an architecture where it is possible to place just about any security control on any form factor, anywhere in the network. Security controls can run as VMs, tap into hypervisors, be added as ACLs in switches, or chug along on dedicated security appliances. It may also be wise to centralize security services on some big honkin’ hardware box (i.e. think Crossbeam, F5, Juniper SRX) when servers are pooled together for load balancing or part of a Hadoop cluster.”]

