Back to GetFilings.com
1
================================================================================
UNITED STATES
SECURITIES AND EXCHANGE COMMISSION
WASHINGTON, D.C. 20549
------------------------
FORM 10-K
------------------------
[X] ANNUAL REPORT PURSUANT TO SECTION 13 OR 15(D) OF THE SECURITIES
EXCHANGE ACT OF 1934
FOR THE FISCAL YEAR ENDED 31 DECEMBER 1997
OR
[ ] TRANSITION REPORT PURSUANT TO SECTION 13 OR 15(D) OF THE SECURITIES
EXCHANGE ACT OF 1934
FOR THE TRANSITION PERIOD FROM
--------------- TO
---------------
COMMISSION FILE NUMBER 0-20558
NETWORKS ASSOCIATES, INC.
(FORMERLY MCAFEE ASSOCIATES, INC.)
(EXACT NAME OF REGISTRANT AS SPECIFIED IN ITS CHARTER)
DELAWARE 77-0316593
(STATE OF INCORPORATION (I.R.S. EMPLOYER IDENTIFICATION NO.)
2805 BOWERS AVENUE
SANTA CLARA, CALIFORNIA 95051-0963
(408) 988-3832
(ADDRESS, INCLUDING ZIP CODE, AND TELEPHONE NUMBER, INCLUDING AREA CODE,
OF REGISTRANT'S PRINCIPAL EXECUTIVE OFFICES)
SECURITIES REGISTERED PURSUANT TO SECTION 12(B) OF THE ACT: None
SECURITIES REGISTERED PURSUANT TO SECTION 12(G) OF THE ACT: COMMON STOCK, $.01
par value
Indicate by check mark whether registrant (1) has filed all reports
required to be filed by Section 13 or 15(d) of the Securities Act of 1934 during
the preceding 12 months, and (2) has been subject to such filing requirements
for the past 90 days. YES [X] NO [ ]
Indicate by check mark if disclosure of delinquent filers pursuant to Item
405 of Regulation S-K is not contained herein, and will not be contained, to the
best of the registrant's knowledge, in definitive proxy or information
statements incorporated by reference in Part III of this Form 10-K or any
amendment to this Form 10-K. [ ]
The aggregate market value of the voting stock held by non-affiliates of
the issuer as of December 31, 1997 was approximately $3.6 billion. The number of
shares outstanding of the issuer's common stock as of December 31, 1997 was
69,920,883.
Documents incorporated by reference: Items 10, 11, 12, and 13 of Part III
are incorporated by reference from the Registrant's Proxy Statement for the
Annual Meeting of Stockholders to be held May 13, 1998.
This report contains 61 pages. The Exhibit Index is on page 58.
================================================================================
2
PART I
ITEM 1. BUSINESS
GENERAL
This Annual Report on Form 10-K contains forward-looking statements that
involve risks and uncertainties. The statements contained herein that are not
purely historical are forward-looking statements within the meaning of Section
27A of the Securities Act and Section 21E of the Exchange Act, including without
limitation statements regarding the Company's expectations, beliefs, intentions
or strategies regarding the future. All forward-looking statements included in
this document or incorporated by reference herein are based on information
available to the Company on the date hereof, and the Company assumes no
obligation to update any such forward-looking statements. The Company's actual
results could differ materially from those anticipated in these forward-looking
statements as a result of certain factors, including those set forth in "-- Risk
Factors" and elsewhere herein.
Networks Associates, Inc. (the "Company") was formed in December 1997 as a
result of the strategic business combination of McAfee Associates, Inc.
("McAfee") and Network General Corporation ("Network General"). Pursuant to this
strategic combination, Network General merged with a wholly owned subsidiary of
McAfee, and McAfee changed its legal name. In mid-December 1997, the Company
acquired Pretty Good Privacy, Inc. ("PGP"), a provider of applied cryptographic
solutions for securing corporate digital assets and protecting privacy.
OVERVIEW
The Company is a leading developer and provider of network security and
management software products. The Company has historically derived a significant
majority of its revenues from the licensing of its flagship McAfee anti-virus
products and Sniffer network fault and performance management products. The
Company is currently focusing its efforts on broadening its revenue base by
providing network security and management solutions to enterprise customers,
targeting in particular the Windows NT/Intel platform. In furtherance of this
strategy, the Company recently organized its products into four product
suites -- McAfee Total Virus Defense and PGP Total Network Security (together
comprising "Net Tools Secure") and Sniffer Total Network Visibility and McAfee
Total Service Desk (together comprising "Net Tools Manager"). These four product
suites together form an integrated solution called "Net Tools".
Many of the Company's network security and management products, including
its industry-leading network security products for anti-virus protection and
Sniffer software-based fault and performance solutions for managing computer
networks, are also available as stand-alone products or as part of smaller
product suites. The Company is also a leader in electronic software
distribution, which is the principal means by which it markets its products and
one of the principal ways it distributes its software products to its customers.
The Company generally utilizes a two-year subscription model for licensing its
non-Sniffer products to corporate clients and is in the process of developing a
two-year subscription model for licensing its Sniffer products as well.
The following table depicts the Company's product suites:
- --------------------------------------------------------------------------------
NET TOOLS
- ------------------------------------------------------------------------------------------------------------
NET TOOLS SECURE NET TOOLS MANAGER
- ------------------------------------------------------------------------------------------------------------
McAfee Total Virus PGP Total Network Sniffer Total Network McAfee Total Service
Defense Security Visibility Desk
- ------------------------------------------------------------------------------------------------------------
- Virus Scan Security - PGP Desktop Suite - Sniffer Portable Analysis - McAfee Help Desk Suite
Suite - PGP Server Suite Suite - Zero Administration
- Net Shield Security - CyberCop - Sniffer Distributed Client Suite
Suite Analysis Suite - Self Service Desk Suite
- Internet Security Suite - Sniffer Service Desk
Suite
- --------------------------------------------------------------------------------
1
3
NET TOOLS
Net Tools is being designed as an integrated solution to protect the
enterprise from network security threats and to reduce the cost of managing an
enterprise network. While supporting other operating systems, Net Tools is being
optimized for Microsoft Windows NT technology ("NT"), employing an Explorer
Interface, Distributed OLE, ActiveX and the DCOM object model. Net Tools is
being designed to leverage NT to bridge the gap between the disparate network
management universes of NetWare and Unix servers. In addition, Net Tools is
being engineered to employ a common graphical user interface ("GUI"), together
with common reporting, alerting and scripting functionalities. The Company is
currently developing its pricing model for the licensing of its Net Tools suite
of products. Among other things, the Company is currently developing a
centralized console for its Net Tools product suite; developing its pricing
model for the Net Tools product suite; and integrating various recently acquired
products (including certain PGP encryption products) into smaller suites sold
under the Net Tools umbrella.
NET TOOLS SECURE: MCAFEE TOTAL VIRUS DEFENSE AND PGP TOTAL NETWORK SECURITY
The Net Tools Secure product suite is comprised of McAfee Total Virus
Defense and PGP Total Network Security. The current U.S. list price for a 1,000
node Net Tools Secure license is $79 per node. A number of the products
incorporated in the Net Tools Secure product suite may be purchased as
stand-alone products or as part of smaller product suites.
McAfee Total Virus Defense. McAfee Total Virus Defense ("McAfee TVD") is
designed to provide a single integrated defense against computer viruses at the
desktop, server and Internet gateway. McAfee TVD is comprised of three security
product suites: VirusScan Security Suite (providing multi-platform protection
for desktop clients); NetShield Security Suite (protects file, application and
groupware servers); and Internet Security Suite (locks out viruses and hostile
applets at the Internet gateway). The current U.S. list price for a 1,000 node
McAfee Total Virus Defense license is $34 per node.
VirusScan Security Suite. VirusScan, one of the Company's flagship
products, is a virus protection program for Windows 3.X, Windows 95, Windows NT,
Macintosh, DOS and OS/2 personal computers ("PCs"). VirusScan scans for known
viruses upon installation. When installation is completed, VirusScan becomes
memory resident and protects systems from further infection. VirusScan is
designed to detect and remove even the most sophisticated categories of known PC
viruses. Corporate users now purchase VirusScan almost exclusively as part of
the VirusScan Security Suite ("VSS"). VSS also includes: (i) WebScanX which
protects against virus infected Internet downloads and e-mails, as well as
emerging hostile Java and Active-X applets; (ii) PCMedic which automatically
diagnoses and corrects PC system problems, as well as prevents errors and
crashes which damage data; and (iii) QuickBackUp which provides fast and easy
retrieval of automatically backed up data files. The NetTools Distribution
Console and Enterprise SecureCast are also included to provide automated remote
installation, updating, and management of the VSS components. The current list
price for a 1,000 user VSS site license is $25 per node. The single user retail
version of VirusScan sells at an average retail price of approximately $29.95.
NetShield Security Suite. NetShield Security Suite ("NSS") provides virus
protection for network file servers running NT, NetWare or Solaris operating
systems. NetShield Security Suite blocks viruses from being transferred over
networks by scanning files which are accessed from the server. It can also
perform regularly scheduled scanning of the server. NSS also includes: (i)
VirusScan Unix which provides virus protection for network file servers running
Solaris, HP-UX, NCR and AIX; (ii) GroupShield for Notes which is a native Lotus
Notes application that is designed to protect the Notes server from viruses as
well as other known security threats; and (iii) GroupShield for Microsoft
Exchange which is a native NT service that prevents virus infected attachments
from being stored or transported by Microsoft Exchange. The NetTools
Distribution Console and Enterprise SecureCast are also included to provide
automated remote installation, updating, and management of the NSS components.
The current list price for a 1,000 node NetShield Security Suite site license is
$16 per node.
Internet Security Suite. Internet Security Suite ("ISS") provides
comprehensive virus protection at the Internet gateway for all likely virus
entry points. The ISS products are designed to capture both known and
2
4
new viruses before they infect multiple users on the network. Servers are
scanned in real-time as messages pass through and downloads occur. Viruses
discovered are automatically cleaned, quarantined, or deleted as configured. In
addition to viruses, ISS products also scan for hostile Java and Active-X
applets. Java and Active-X applets offer a powerful way to make web sites more
interactive for visitors, but can also be used to execute destructive commands.
ISS includes: (i) WebShield SMTP which is designed to scan all inbound and
outbound e-mail passing through the SMTP gateway; (ii) WebShieldX Proxy which
provides protection for HTTP and FTP traffic and scans for hostile Java and
Active-X applets; and (iii) WebScanX which protects against virus infected
Internet downloads and e-mails, as well as emerging hostile Java and Active-X
applets, by filtering them out before they can cause damage to users on desktop
or mobile PC's. The NetTools Distribution Console and Enterprise SecureCast are
also included to provide automated remote installation, updating, and management
of the ISS components. The current list price for a 1,000 node Internet Security
Suite site license is $16 per node.
PGP Total Network Security. PGP Total Network Security ("PGP TNS") is being
designed as an integrated suite of desktop and server solutions designed to
protect the digital assets of an enterprise through encryption and
authentication. All encryption algorithms used in PGP TNS provide "strong"
encryption with a minimum 128 bit key length for symmetric encryption, plus the
use of a public/private key scheme with larger keys. To the Company's knowledge,
no techniques currently exist that can "crack" these strong encryption
algorithms so they are usable even in demanding commercial and military
applications. PGP TNS is being designed as a comprehensive, scalable security
solution with central manageability and policy-based administration. PGP TNS
will comprise two network security product suites: the PGP Desktop Suite
(protects e-mails, files, disks and network communication); and the PGP Server
Suite (which is being developed to manage certificates, control encryption
policies and replicate certificate servers). Both PGP Desktop and Server suites
also include the PGPsdk which allows corporate or application developers to
create custom encryption using PGP's strong encryption algorithms. Complementing
PGP TNS is intrusion protection through the CyberCop product (described below)
which is sold separately and not as part of a suite. The current U.S. list price
for a 1,000 node PGP Total Network Security site license utilizing the Diffie-
Hellman strong encryption algorithm is $65 per node. The current list price for
CyberCop is $35,700 per unit.
PGP Desktop Suite. The PGP Desktop Suite ("PGP DS") provides multi-platform
encryption protection for a wide range of desktop computers. The PGP DS includes
the PGP for emails and files ("PGPEF") product. PGPEF uses compression,
encryption and digital signatures to ensure privacy at the desktop and during
transmission over both internal and public networks. PGP provides these
capabilities by allowing end users to encrypt mail messages, files or mail
attachments easily and then mail them to other PGP users who decrypt them using
a public/private key encryption scheme. PGPEF is currently available on more
than 15 different platforms, including Windows 3.1/95/NT, Macintosh and multiple
versions of UNIX. In addition, PGPEF is designed to offer seamless integration
with most commonly used e-mail applications. PGP DS also includes: (i) PGPdisk
(currently available for the Macintosh platform only) which provides hard disk
protection, even if the machine is compromised, by allowing only the correct
private key to unlock encrypted data on the hard disk; and (ii) PGPsdk
(described above). The PGPsdk can also be purchased by OEMs so that they may use
it to develop applications using encryption for sale in the commercial market.
The current U.S. list price for a 1,000 node PGP Desktop Suite site license
utilizing the Diffie-Hellman strong encryption algorithm is $55 per node.
PGP Server Suite. The PGP Server Suite ("PGP SS") is being designed to
provide management of public keys, authentication and policy-based
administration and management of security policies on an enterprise-wide basis.
The PGP SS is comprised of (i) the PGP Certificate Server, (ii) the Policy
Management Agent; and (iii) the Policy Server. The PGP Certificate Server is
designed to enable corporations to deploy, certify, revoke and store digital
certificates allowing hundreds of thousands of users to exchange and
authenticate digital information in a public/private key encryption system.
Certificate directories, also known as key rings at the single-user level, are
the equivalent of electronic address books for information security. Although
users can maintain their own key rings, large corporate customers have requested
the capability to centrally manage thousands of geographically dispersed keys
and the associated encryption processes and policies for their employees. The
PGP Certificate Server is designed to allow
3
5
corporate users to easily locate their electronic correspondents' keys in order
to encrypt, decrypt, verify and/or sign digital information. In addition, the
PGP Certificate Server is designed to allow administrators to manage keys
seamlessly and centrally. Designed to handle all certificate types, the PGP
Certificate Server allows for an integrated policy management system when
coupled with other products included in PGP SS, such as the Policy Management
Agent and Policy Server (a future component of the suite), facilitating the
establishment and enforcement of corporate information security regulations. The
Policy Management Agent allows corporations to integrate security policy
enforcement as part of their networking infrastructure. The Policy Server will
enable companies to consolidate control, coordination and enforcement of
business security policies through the centralized management of geographically
dispersed clients, servers and associated policy agents. The Policy Server is
being designed to verify, enforce and distribute policy configurations for
clients, certificate servers and their associated policy agents. PGP SS further
includes PGPsdk. The current U.S. list price for a 1,000 node PGP Server Suite
site license utilizing the Diffie-Hellman strong encryption algorithm is $31 per
node.
CyberCop. The CyberCop intrusion detection system is designed to safeguard
networks from external and internal attacks by performing real-time surveillance
of network traffic and sending out an alarm when intrusion is detected. The
CyberCop product's sensors are placed at key locations throughout a network,
from LAN segments and dial-up modem servers to connection to the internet or
other wide area networks. CyberCop is not sold as part of a suite. The current
list price for the CyberCop product is $35,700 per unit.
NET TOOLS MANAGER: SNIFFER TOTAL NETWORK VISIBILITY AND MCAFEE TOTAL SERVICE
DESK
Net Tools Manager is a network management and service desk solution
designed to make networks more efficient and network users more productive. The
Net Tools Manager product suite is comprised of Sniffer Total Network
Visibility, a comprehensive set of products and services for network fault and
performance management; and McAfee Total Service Desk, which integrates help
desk applications with desktop management software. McAfee Total Service Desk is
licensed on a two-year subscription basis. Pricing for 10 HelpDesk Users
supporting 1000 nodes is $45.95 per node. A number of the products incorporated
in the Net Tools Manager product suite may be purchased as stand-alone products
or as part of smaller product suites.
Sniffer Total Network Visibility. Sniffer Total Network Visibility
("Sniffer TNV") offers comprehensive network fault and performance solutions to
provide optimum network performance. Sniffer TNV is comprised of three product
suites: Sniffer Portable Analysis Suites which consist of portable tools which
analyze network traffic to pinpoint and help resolve performance problems on a
variety of multi-topology, multi-protocol networks; Sniffer Distributed Analysis
Suites which perform automatic network monitoring, protocol decodes and problem
analysis for identifying and resolving network problems from a central single-
fault and performance-management console; and Sniffer Service Desk Suite which
offers proactive management, reporting and service desk tools for better
supporting business objectives and delivering a higher quality of service to end
users. The U.S. list price for Sniffer Total Network Visibility Suite starts at
$100 per network node for a two year license on a network with a minimum 5,000
nodes.
Sniffer Portable Analysis Suite. The Sniffer Portable Analysis Suite
("Sniffer PAS") consists of portable tools designed to automatically pinpoint
and analyze network problems and to recommend solutions. To address the growing
complexity of multi-vendor, multi-protocol, multi-topology network environments,
Sniffer PAS is designed and tested to run on a variety of computer platforms.
The product is intended to be used as a portable tool, either on a portable or
notebook size computer platform, but it can also be installed on a desktop
computer platform. The Sniffer PAS addresses a variety of network needs ranging
from less-critical segment coverage to high-speed, mission-critical or backbone
networks. Products sold under the Sniffer PAS range from products which capture
data, monitor network traffic and collect key network statistics for small
networks, to products which optimize network performance and increase network
reliability by uncovering and analyzing network problems and recommending
solutions to such problems, automatically and in real-time for mid-level and
high-speed networks. The U.S. list price for the Sniffer Portable Analysis Suite
is $23,050 per copy.
4
6
Sniffer Distributed Analysis Suite. The Sniffer Distributed Analysis Suite
("Sniffer DAS") is designed to allow customers to monitor and diagnose problems
on complex, multi-segment networks from centralized locations. With the addition
of expert analysis capabilities, the Sniffer DAS provides automatic problem
diagnosis and recommends solutions which are displayed on a central console. The
Sniffer DAS addresses a variety of network needs ranging from less critical
segment coverage to high-speed, mission-critical or backbone products. Products
sold under the Sniffer DAS range from easy-to-use products which feature decode
and analysis capabilities and network health and availability summaries for
small or department networks, to products which provide service level management
and proactive device analysis for enterprises employing high-speed networks. The
U.S. list price for the Sniffer Distributed Analysis Suite for 2,001 - 5,000
desktops starts at $45 per desktop.
Sniffer Service Desk Suite. The Sniffer Service Desk Suite ("Sniffer SDS")
is a web browser-based network management suite that is designed to automate and
manage the process of resolving network problems proactively by identifying,
analyzing, tracking and resolving network problems and assessing trends. The
Sniffer SDS includes features such as trouble ticketing to problem resolution,
exception reporting and final close of ticket. The Sniffer SDS is comprised of
products designed to automatically collect data on instrumented network
components and to provide real-time and historic health and availability
summaries; to monitor and analyze the long-term performance of routers,
switches, hubs, and frame relay devices; and to provide immediate access to
service desk trouble tickets from any browser. The U.S. list price for the
Sniffer Service Desk Suite starts at $500 per network device.
McAfee Total Service Desk. McAfee Total Service Desk ("McAfee TSD")
provides proactive network management and help desk technology in one integrated
service desk solution. McAfee TSD comprises three suites: McAfee HelpDesk Suite;
Zero Administration Suite; and Self ServiceDesk Suite. The current U.S. list
price for a ten concurrent user license for McAfee TSD is $4,595. This price
also includes support of 1000 desktops.
McAfee HelpDesk Suite. The McAfee HelpDesk Suite is designed to provide
complete call management, problem resolution, crisis management, change
management and reporting for mid-range and departmental help desks. The McAfee
HelpDesk Suite automates the process of entering caller information and
automatically displays information about a caller allowing faster service and
minimizing duplication of efforts. In addition, the McAfee HelpDesk Suite is
designed to provide automated crisis management, by posting notices of known
problems on a centralized "white board." Related calls can be linked,
automatically generating or resolving (and subsequently closing) all linked
trouble tickets. Finally, the McAfee HelpDesk Suite is designed to automate
change management throughout the enterprise, allowing work orders for a selected
task to be automatically sent to all appropriate parties. Detailed reports
generated by the McAfee HelpDesk Suite help measure the impact of each problem
and the use of enterprise resources to solve each problem. The current U.S. list
price for a ten concurrent user license for McAfee HelpDesk Suite is $2,428.
Zero Administration Client Suite. The Zero Administration Client ("ZAC")
Suite is designed to provide enterprise wide control of network software with
integrated software distribution, software and hardware inventory, desktop
management/menuing, license metering and remote control features. The ZAC Suite
can automatically distribute, install and track new software and updates
throughout an enterprise and can perform an enterprise-wide hardware, software
and system file inventory without having to visit each station. The ZAC Suite
also includes management/menuing capabilities which enable central configuration
of application access and desktop layout. In addition, the ZAC Suite provides
software metering capabilities, allowing the efficient management of license
sharing, and transfers and reducing the number of licenses that need to be
purchased based on actual usage. Furthermore, the ZAC Suite allows compliance
with license
5
7
limitations by restricting concurrent usage of a software product to only the
total of number of licenses purchased. Finally, the ZAC Suite allows remote
access to critical information on multiple platforms. The Zero Administrator
Client Suite console controls DOS, Windows, Windows 95 and Windows NT-based PC
assets connected to NT and NetWare file servers, and its open database structure
is designed to ensure accessibility. The current U.S. list price for a 1,000
node ZAC Suite site license is $39 per node.
Self ServiceDesk Suite. The Self ServiceDesk Suite provides information
services organizations with self service oriented applications designed to make
all supported PCs help desk ready. The Self ServiceDesk Suite integrates PC
diagnostic software with remote control and web-based access, allowing cost
savings for help desk and network administrators. The Self ServiceDesk Suite
allows employees to solve their own PC application problems over the web using
Knowledge Wizard, a searchable information database that gives employees instant
answers to thousands of common hardware and software application questions. The
Self ServiceDesk Suite also includes PCMedic. PCMedic automatically diagnoses
and corrects PC system problems, as well as prevents errors and crashes which
damage data. The current U.S. list price for a 1,000 node Self Service Desk
Suite site license is $39 per node.
TOTAL SERVICE SOLUTIONS
As the Company's products and computer networks become more complex,
customers increasingly require greater professional assistance in the design,
installation, configuration and implementation of their networks and acquired
products. To meet these evolving customer needs, the Company has established
Total Service Solutions. Total Service Solutions is focused on three services
segments: Consulting Services, Total Education Service and Product Support to
complete the customer's product license relationship with the Company. The
Company intends to expand and develop significantly its worldwide professional
services organization.
Consulting Services supports product integrations, customization and
deployment with an array of standardized and custom offerings. Consulting
Services also offers other services ranging from proactive and emergency
troubleshooting to network design, planning and simulation.
Total Education Service offers an extensive curriculum of computer network
technology courses, from product training to advanced network troubleshooting
and performance management. Total Education Service is delivered from nine
training centers and 50 roadshow locations nationally, and 18 international
locations. Total Education Service emphasizes customized on-site training at
customer locations, and has trained over 35,000 individuals in Fortune 500 and
other companies.
Product Support technical representatives respond to customer calls and
electronic messages, resolve product issues and answer detailed questions. Three
levels of phone support are available, so that customers can choose the
availability and response times that meet their business needs. Product Support
is available to all Company customers on a worldwide basis. Additionally,
Product Support delivers advanced technology solutions on the Internet, allowing
customers to resolve issues expeditiously at any time of day or night.
SUBSCRIPTION LICENSING MODEL
The Company typically licenses its non-Sniffer products (together with the
related maintenance) to corporate and government customers for a period of two
years during which time the licensees receive all upgrades, updates and
technical support. Upon expiration of the two-year period, customers are
contacted by the Company for renewal. The Company is currently developing a
two-year subscription model for licensing its Sniffer products, which accounted
for a significant portion of its revenues in 1997 and historically have been
licensed on a perpetual basis with annual maintenance and support contracts. The
Company believes that the two-year subscription licensing and related
maintenance offers several benefits to its customers. For one initial fee, the
customer receives the software and all upgrades, updates and support for two
years. In addition, the customer only has to make a decision on its investment
in the software every two years. Since the Company is able to distribute its
products and upgrades at a lower cost than do companies using traditional
distribution methods, the Company also has the ability to offer upgrades and
updates and address user feature requirements on a more regular basis. In
addition, by offering a two-year license, as opposed to a traditional
6
8
perpetual term license, the Company is able to meet a lower initial cost
threshold for customers with annual budgeting constraints.
The Company's two-year subscription licensing model creates the opportunity
for recurring revenue for the Company through the renewal of existing licenses.
Since the Company typically licenses its products on a per user basis, at the
time of renewal the Company has the potential to increase the number of
computers licensed at existing sites and to expand its licenses to new sites in
an organization. The renewal process also provides an opportunity to cross-sell
new products and product suites to existing customers. There can be no assurance
that the Company will be able to sustain current renewal rates in the future.
With the expansion of the Company's distribution channels to include
resellers and distributors, the Company also provides single user licenses for
its products under traditional, unlimited term licenses with product updates,
upgrades and support available to customers under separate maintenance
contracts.
ELECTRONIC SOFTWARE DISTRIBUTION
The Company was the first company to successfully utilize electronic
software distribution to reach corporate and government customers. Through the
World Wide Web and various online services such as CompuServe, America Online
and the Microsoft Network, the Company is able to electronically communicate and
interact with its customers from pre-sales evaluation through product delivery
and post-sales support. The Company believes that the electronic channel is an
important source of information and support for IT professionals. By making
fully-functioning, unencrypted versions of many of its products widely available
for evaluation, the Company seeks to encourage product sampling among these
sophisticated users. Unlike traditional software evaluation programs, where
potential customers often are required to identify themselves (typically
resulting in their inclusion in a sales database), go through a qualification
process and then wait for the evaluation copy to be shipped, potential customers
desiring to evaluate Company products for a 30-day period can anonymously
download Company products from the Company's World Wide Web site. In 1996, the
Company opened the McAfee Store on the World Wide Web to distribute its own and
third party products.
The Company uses electronic software distribution as a principal means of
delivering licensed software, as well as upgrades and updates to its customers.
Electronic software distribution offers a number of advantages to the Company
over traditional software distribution methods including the ability to
distribute its products and upgrades more rapidly and at a lower cost than
traditional distribution methods. Since all of the software and documentation
can be distributed electronically, the cost of internal distribution by the
customer is also lower than with traditional software and printed documentation.
The Company also seeks to increase awareness of its products, to provide
customer and technical support and to encourage dialogue regarding its products
by maintaining a World Wide Web site and forums on CompuServe, America Online
and The Microsoft Network. The Company also provides support through the World
Wide Web. By providing support electronically, the Company believes that it is
often able to identify and solve customer problems more rapidly.
SALES AND MARKETING
To augment and capitalize upon the awareness of the Company's products
resulting from its electronic distribution model, the Company's sales and
marketing efforts are directed primarily at large corporate and government
customers as well as to resellers, distributors and system integrators worldwide
through the following channels:
North American Direct Sales. The Company has recently reorganized its
combined direct sales force into three tiers. The first tier focuses on the sale
of the full product suite under the Net Tools umbrella to enterprise and
national account customers. The second tier consists of four separate sales
groups focused on the sale of the individual product suites (i.e., McAfee Total
Virus Defense; PGP Total Network Security; Sniffer Total Network Visibility; or
McAfee Total Service Desk) to the departmental level. The third tier consists of
four separate outbound corporate telesales forces who actively market the
Company's individual
7
9
product suites to customers with less than 1,000 nodes. The Company's corporate
telesales representatives also respond to prospective customers who contact the
Company as a result of a particular marketing program or after electronically
evaluating a Company product. Another significant focus of the Company's
corporate telesales force is to contact existing customers to cross-sell
additional products and product suites. To augment its sales organization, the
Company's executives are involved with sales to many major accounts. The Company
historically has not had a large enterprise or national accounts sales force and
only recently developed a direct sales group focused on these larger accounts.
In addition, the Company has not historically had a separate sales force focused
on the sale of its suite of security products (many of which were only recently
acquired and are currently being engineered into a common suite). Accordingly,
the Company is currently expanding these direct sales organizations in North
America.
The Company devotes a portion of its corporate telesales force to the
renewal of its existing licenses. Prior to expiration of a license, a corporate
telesales representative contacts the customer and encourages renewal of the
expiring license while determining if increasing the number of computers
licensed is appropriate and, additionally, marketing new products and product
suites to this existing customer.
International Sales. The Company has sales and support operations in
Europe, Asia, South America and Australia. In 1997, international revenues
accounted for approximately 28% of the Company's net revenues. Historically, the
Company has relied primarily upon independent agents and distributors to market
its products internationally. The Company expects that international revenues
will continue to account for a significant percentage of net revenues. In 1997,
the Company acquired, among others, its distributors in Japan and in The
Netherlands. The Company expects to continue using independent agents primarily
in smaller markets where a direct sales presence is not currently warranted.
While the Company's agents and distributors include some large systems
integrators, most are small companies that market the Company's software along
with products of other companies that they represent. The Company typically
enters into agreements with its agents which, among other things, obligate its
agents to provide technical support and the most current versions of the
Company's products to its customers and to provide the Company with information
about its licensees. Such agreements permit either the Company or the agent to
terminate the agreement upon proper prior written notice. International agents
invoice their own orders and collect payment, remitting the license fee, net of
commissions, to the Company in United States dollars.
Channel Sales. To complement its direct sales, the Company markets many of
its products through corporate resellers and distributors, and indirectly
through retailers. While historical sales through these distribution channels
have generated a relatively small portion of the Company's net revenue, over the
past two years the Company's presence in these channels has expanded
significantly. The Company currently utilizes corporate resellers, including
STREAM, Software Spectrum, Softmart and ASAP, which focus primarily on selling
site licenses for the Company's software to corporate customers. The Company is
currently expanding the indirect sales channel for its Sniffer products and its
PGP security products.
Independent software distributors who market the Company's products include
Ingram Micro, Merisel America and Tech Data. These distributors stock the
Company's products in inventory for redistribution primarily to large retailers,
VARs and mail order companies. Through its authorized distributors, the Company
sells its retail packaged products to several of the large computer and software
retailers in the United States, including Staples, CompUSA, Computer City,
Software Etc. and Best Buy. Several members of the Company's channel sales force
work closely with the Company's major reseller and distributor accounts on the
management of orders and inventory level, as well as on promotion and selling
activities.
The Company's distributors generally are permitted stock balancing and
stock rotation rights but are typically required to place offsetting orders of
equal value. The Company often relies on resellers and distributors, including
retail outlets, to market and support its products. The Company's agreements
with its distributors are not exclusive and may be terminated by either party
without cause. There can be no assurance that any distributors will continue to
represent the Company's products.
Original Equipment Manufacturers ("OEMs"). OEMs license the Company's
products (mainly anti-virus products) and bundle them with personal computer
hardware or software. OEMs typically sublicense a
8
10
single version of the Company's products to end users who must contact the
Company in order to license updates. The Company typically receives a per copy
royalty from its OEMs.
Other Marketing Activities. The Company's principal means of marketing its
products is through the World Wide Web. Not only does the Company's Website
contain various marketing materials and information about its products, but from
the Website customers may download and purchase products and potential customers
may download Company products for a 30-day free trial. The Company also promotes
its products through advertising activities in trade publications and direct
mail campaigns. The Company is currently conducting a national television
advertising campaign in the U.S. during certain major sporting events. The
Company also attends trade shows, sponsors conferences and publishes a quarterly
newsletter which is mailed to existing and prospective customers. In addition,
the Company also maintains forums on CompuServe, America Online and The
Microsoft Network which provide electronic forums for subscribers of these
services to discuss issues related to computer viruses and make inquiries
regarding the Company's products.
CUSTOMERS
The Company primarily markets its products directly to large corporate and
government customers as well as to resellers and distributors. No customer
accounted for more than 10% of the Company's net revenue during 1997, 1996 or
1995.
PRODUCT DEVELOPMENT AND ACQUISITION
The software industry has experienced and is expected to continue to
experience a significant amount of consolidation. In addition, it is expected
that the Company will grow internally and through strategic acquisitions in
order, among other things, to expand the breadth and depth of its product suites
and to build its professional services organization. The Company continually
evaluates potential acquisitions of complementary businesses, products and
technologies. In addition to the Network General merger in December 1997, the
Company has consummated a series of significant acquisitions since 1994,
including the acquisitions of PGP and Helix in December 1997, Cinco Networks,
Inc. in August 1997, 3DV Technology, Inc. in March 1997, a controlling interest
in FSA Corporation of Canada in August 1996, Vycor Corporation in February 1996,
Saber Software Corporation, Inc. in August 1995 and ProTools, Inc. in January
1994. In addition, since 1995 the Company has acquired a number of its
international agents and distributors, including agents or distributors in
Australia, Brazil, Japan and The Netherlands and is currently investigating
acquisitions of additional foreign agents and distributors. Past acquisitions
have consisted of, and future acquisitions will likely include, acquisitions of
businesses, interests in businesses and assets of businesses.
The Company believes that its ability to maintain its competitiveness will
depend in large part upon its ability to enhance existing products, develop and
acquire new products and develop and integrate acquired products. The market for
computer software is characterized by low barriers to entry and rapid
technological change, and is highly competitive with respect to timely product
introductions. There can be no assurance that product enhancements or new
products will be developed or acquired on a timely basis or at all.
In addition to developing new products, the Company's internal development
staff is also focused on developing updates to existing products and modifying
and enhancing any acquired products. For example, the Company is designing a
centralized console from which the various Net Tools component suites can be
operated, administered and maintained utilizing a common look and feel and is
integrating its various security products (such as its recently acquired PGP
encryption products and Network General CyberCop product) into a marketable
suite of products. Future updates may, among other things, include additional
functionality, respond to user problems or address issues of compatibility with
changing operating systems and environments. The Company believes that the
ability to provide these updates to users frequently and at a low cost is a key
to its success. Failure to release such updates on a timely basis could have a
material adverse impact on the Company. There can be no assurance that the
Company will be successful in these efforts. In addition, there can be no
assurance that future changes in Windows 95, Windows NT, NetWare or other
popular operating systems would not result in incompatibility with the Company's
products. The Company's failure to
9
11
introduce on a timely basis new products that are compatible with operating
systems and environments preferred by desktop computer users would have a
material adverse effect on the Company's business, financial condition and
results of operations.
The Company expended $85.0 million, $52.2 million and $36.8 million in the
years ended December 31, 1997, 1996 and 1995, respectively, on research and
development.
MANUFACTURING AND SUPPLIERS
The Company's manufacturing operations consist primarily of final assembly,
testing and quality control of materials, components, subassemblies and systems
for its Sniffer based products. The Company believes its quality control
procedures have been instrumental in achieving the high performance and
reliability of these products. To date, the Company has experienced minimal
return of its products by users. The Company's manufacturing operations do not
require any capital expenditures for environmental control facilities or any
special activities for protection of the environment. The Company intends to
outsource the manufacturing operations related to its Sniffer based products in
1998. There can be no assurance that, among other things, the Company will be
able to outsource these manufacturing operations on a timely basis or at all.
The Company's Sniffer products are designed to work with a variety of
network topologies and computer platforms available from multiple manufacturers.
The Company relies on a limited number of suppliers for certain critical
components of its products. Some of the Sniffer products are designed around a
specific computer platform available only from certain manufacturers. In the
case of Sniffer Analyzer products, customers purchase the required platform
either from the Company or from suppliers. As a result of product transitions by
its computer platform vendors, the Company has found it necessary to purchase
and inventory computer platforms for resale to customers. Any significant
shortage of computer platforms or other critical components for Sniffer products
could lead to cancellations or delays of purchases of these products, which
could materially and adversely affect the Company's results of operations. If
purchases of computer platforms or other components exceed demand, the Company
could incur expenses for disposing of excess inventory, which would also
adversely affect its results of operations.
The Company is in the process of developing software only versionS of its
Sniffer products. Purchasers of these Sniffer software products would be
required to already own or purchase directly from the manufacturer or other
vendors the necessary hardware products (such as computer platforms and
components). There can be no assurance that the Company can produce a software
only Sniffer product on a timely basis or at all or that customers will not
require that the Company continue to provide the necessary hardware products.
COMPETITION
The markets for the Company's products are intensely competitive and the
Company expects competition to increase in the near-term. The Company believes
that the principal competitive factors affecting the markets for its products
include performance, functionality, quality, customer support, breadth of
product line, frequency of upgrades and updates, integration of products,
manageability of products, brand name recognition, company reputation and price.
Certain of the criteria upon which the performance and quality of the Company's
anti-virus software products compete include the number and types of viruses
detected, the speed at which the products run and ease of use. Certain of the
Company's competitors have been in the network management market longer than the
Company, and other competitors, such as Symantec Corporation ("Symantec"), Intel
Corporation ("Intel"), Seagate Technology, Inc. ("Seagate"), and Hewlett-Packard
Company ("HP"), are larger and have greater name recognition than the Company.
The Company will also need to develop name recognition for the name "Network
Associates." In addition, certain larger competitors such as Intel, Microsoft
Corporation ("Microsoft") and Novell, Inc. ("Novell") have established
relationships with hardware vendors related to their other product lines. These
relationships may provide them with a competitive advantage in penetrating the
OEM market with their network security and management products. As is the case
in many segments of the software industry, the Company has been encountering,
and expects to further encounter, increasing competition. This increased
competition could reduce average selling prices and, therefore, profit margins.
Competitive pressures could result not only in sustained price reductions but
also in a
10
12
decline in sales volume, which events would materially adversely affect the
Company's business, financial condition and results of operations. In addition,
competitive pressures may make it difficult for the Company to maintain or
exceed its growth rate.
Although there is a trend toward consolidation in the network security and
management market, the market is currently highly fragmented with products
offered by many vendors. The Company's principal competitor is the Peter Norton
Group of Symantec in the network security market and Intel's LanDesk in the
network management market. The Company's other competitors include Computer
Associates/Cheyenne Software, IBM, Seagate, the Dr. Solomon Group and Trend
Micro, Inc., as well as numerous smaller companies and shareware authors that
may in the future develop into stronger competitors or be consolidated into
larger competitors. In the encryption portion of the security market, the
Company's principal competitors are Security Dynamics Technologies, Inc., Cylink
Corporation, Entrust Technologies and VeriSign, Inc. The Company's principal
competitors in the help desk market are Remedy Corporation, Software Artistry
(recently acquired by Tivoli Systems/IBM) and Magic Solutions, Inc. The
Company's principal competitor in the software-based network fault and
performance management market is HP, with other competitors including Azure
Technologies Incorporated, Concord Communications, DeskTalk Systems, Kaspia
Systems, Shomiti Systems, Inc. and Wandel & Goltermann, Inc. The Company also
faces competition in the security market from Cisco Systems, Inc., Security
Dynamics Technologies, Inc., Checkpoint Software and other vendors in the
encryption/firewall market. In addition, the Company faces competition from
large and established software companies such as Microsoft, Intel, Novell and HP
which offer network management products as enhancements to their network
operating systems. As the network management market develops, the Company may
face increased competition from these large companies, as well as other
companies seeking to enter the market. The trend toward enterprise-wide network
management and security solutions may result in a consolidation of the network
management and security market around a smaller number of vendors who are able
to provide the necessary software and support capabilities. In addition, to the
extent that the Company is successful in developing its Net Tools suite of
products designed around a centralized management and administration console for
the Windows NT platform, the Company will likely compete with large computer
systems management companies such as Tivoli Systems (TME) and Computer
Associates (Unicenter).
PROPRIETARY TECHNOLOGY
The Company's success is heavily dependent upon proprietary software
technology. The Company relies on a combination of contractual rights,
trademarks, trade secrets and copyrights to establish and protect proprietary
rights in its software. There can be no assurance these protections will be
adequate or that competitors will not independently develop technologies or
products that are substantially equivalent or superior to the Company's
products.
The Company recently changed its legal name to "Networks Associates, Inc."
and has recently begun conducting business as "Network Associates." The Company
believes that there are a number of other companies with similar names and,
although the Company has not been served in any suit, three companies (including
Network Associates Corporation in California and Network Associates, Inc. in
Oregon) have made claims (including various trademark claims) or demands with
respect to the Company's use of the name Network Associates. There can be no
assurance that the Company will be able to enforce rights in that name, that it
will be free to use the name in all jurisdictions, that there will be no
additional challenges to the use of that name or that it will not be required to
expend significant resources in securing the use of that name.
The Company does not typically obtain signed license agreements from its
corporate, government and institutional customers who license products directly
from it. The Company includes an electronic version of a "shrink-wrap" license
in all of its electronically distributed software and a printed license in the
box for its products distributed through traditional distribution channels in
order to protect its copyrights and trade secrets in those products. Since none
of these licenses are signed by the licensee, many authorities believe that such
licenses may not be enforceable under the laws of many states and foreign
jurisdictions. In addition, the laws of some foreign countries either do not
protect proprietary rights or offer only limited protection for those rights.
There can be no assurance that the steps taken by the Company to protect its
proprietary software
11
13
technology will be adequate to deter misappropriation of this technology. For
example, the Company is aware that a substantial number of users of its
anti-virus products have not paid any registration or license fees to the
Company. Changing legal interpretations of liability for unauthorized use of the
Company's software, or lessened sensitivity by corporate, government or
institutional users to avoiding copyright infringement, could have a material
adverse effect on the Company's business, financial condition and results of
operations.
EMPLOYEES
As of December 31, 1997, the Company employed over 1,600 individuals
worldwide. Competition for qualified management and technical personnel is
intense in the software industry. The Company's continued success will depend in
part upon its ability to attract and retain qualified personnel. None of the
Company's employees is represented by a labor union and the Company believes
that its employee relations are good.
RISK FACTORS
Variability of Quarterly Operating Results. The Company's results of
operations have been subject to significant fluctuations, particularly on a
quarterly basis, and the Company's future results of operations could fluctuate
significantly from quarter to quarter and from year to year. Causes of such
fluctuations may include the volume and timing of new orders and renewals,
distributor inventory levels and return rates, Company inventory levels, the
introduction of new products, product upgrades or updates by the Company or its
competitors, changes in product mix, changes in product prices and pricing
models, seasonality, trends in the computer industry, general economic
conditions (such as the recent economic turbulence in Asia), extraordinary
events such as acquisitions or litigation and the occurrence of unexpected
events. The operating results of many software companies reflect seasonal
trends, and the Company's business, financial condition and results of
operations may be affected by such trends in the future. Such trends may include
higher net revenue in the fourth quarter as many customers complete annual
budgetary cycles, and lower net revenue in the summer months when many
businesses experience lower sales, particularly in the European market.
Although the Company has experienced significant growth in net revenue and
net income (before acquisition and other related costs) in absolute terms, the
Company's growth rate has slowed in recent periods. The Company has experienced
increased price competition for its products and the Company expects competition
to increase in the near-term, which may result in reduced average selling prices
for the Company's products in the future. Due to these and other factors (such
as a maturing anti-virus market and an increasingly higher base from which to
grow), the Company's historic revenue growth rate will be difficult to sustain
or increase. To the extent these trends continue, the Company's results of
operations could be materially adversely affected. Renewals have historically
accounted for a significant portion of the Company's net revenue; however, there
can be no assurance that the Company will be able to sustain historic renewal
rates for its products in the future. Risks related to the Company's recent
change in business strategies could also cause fluctuations in operating results
and could make comparisons with historic operating results and balances
difficult or not meaningful. See "-- Risks Related to Certain Business
Strategies."
The timing and amount of the Company's revenues are subject to a number of
factors that make estimating operating results prior to the end of a quarter
uncertain. The Company does not expect to maintain a significant level of
backlog and, as a result, product revenues in any quarter will be dependent on
contracts entered into or orders booked and shipped in that quarter. During
1997, the Company generally experienced a trend toward higher order receipts
toward the end of the last month of a quarter, resulting in a higher percentage
of revenue shipments during the last month of a quarter than in 1996, which
makes predicting revenues more difficult. The timing of closing larger orders
increases the risks of quarter-to-quarter fluctuation. To the extent that the
Company is successful in licensing larger product suites under the Net Tools
umbrella (particularly to large enterprise and national accounts), the size of
its orders and the length of its sales cycle are likely to increase. If orders
forecasted for a specific customer for a particular quarter are not realized or
revenues are not otherwise recognized in that quarter, the Company's operating
results for that quarter could be materially adversely affected. See
"Potentially Longer Sales and Implementation Cycles for Certain Products."
12
14
The trading price of the Company's Common Stock has historically been
subject to wide fluctuations, with factors such as earnings announcements and
litigation developments contributing to this volatility. Failure to achieve
periodic revenue, earnings and other operating and financial results as
forecasted or anticipated by brokerage firms, industry analysts or investors
could result in an immediate and adverse effect on the market price of the
Company's Common Stock. The Company may not discover, or be able to confirm,
revenue or earnings shortfalls until the end of a quarter, which could result in
an immediate and adverse effect on the price of the Company's Common Stock.
Risk of Inclusion of Network Management and Security Functionality in
Hardware and Other Software. In the future, vendors of hardware and of operating
system software or other software (such as firewall or electronic mail software)
may continue to enhance their products or bundle separate products to include
functionality that currently is provided primarily by network security and
management software. Such enhancements may be achieved through the addition of
functionality to operating system software or other software or the bundling of
network security and management software with operating system software or other
products. For example, Cisco Systems, Inc. ("Cisco") recently incorporated a
firewall in certain of its hardware products and Microsoft introduced limited
anti-virus functionality into its MS-DOS versions in 1993. The widespread
inclusion of the functionality of the Company's products as standard features of
computer hardware or of operating system software or other software could render
the Company's products obsolete and unmarketable, particularly if the quality of
such functionality were comparable to that of the Company's products.
Furthermore, even if the network security and/or management functionality
provided as standard features by hardware providers or operating systems or
other software is more limited than that of the Company's products, there can be
no assurance that a significant number of customers would not elect to accept
such functionality in lieu of purchasing additional software. If the Company
were unable to develop new network security and management products to further
enhance operating systems or other software and to replace successfully any
obsolete products, the Company's business, financial condition and results of
operations would be materially adversely affected.
Risks Associated with Recent Acquisitions. In addition to risks described
under "-- Risks Associated with Acquisitions Generally," the Company faces
significant risks associated with its recent combination with Network General
and other recent acquisitions (including the acquisitions of PGP and Helix
Software Company ("Helix"). There can be no assurance that the Company will
realize the desired benefits of these transactions. In order to successfully
integrate these companies, the Company must, among other things, continue to
attract and retain key management and other personnel; integrate, both from an
engineering and a sales and marketing perspective, the acquired products
(including Network General's Sniffer and CyberCop products, PGP's encryption
products and Helix's utilities products) into its suite of product offerings;
integrate and develop a cohesive focused direct and indirect sales force for its
product offerings; consolidate duplicate facilities; and develop name
recognition for its new name. The diversion of the attention of management from
the day-to-day operations of the Company, or difficulties encountered in the
integration process, could have a material adverse effect on the Company's
business, financial condition and results of operations. See "-- Need to Develop
Enterprise and National Accounts Sales Force and Security Products Sales Force;
Risks Related to Direct Sales Force" and "-- Use of Indirect Sales Channels;
Need to Develop Indirect Sales Channel for Sniffer and PGP Security Products."
During 1997, the Company incurred significant non-recurring charges
associated with the Network General combination and the acquisitions of PGP and
Helix. There can be no assurance that the Company will not incur additional
material charges in subsequent quarters to reflect additional costs associated
with these transactions and with respect to its name change and the marketing of
its products under the "Network Associates" name.
Risks Related to Certain Business Strategies. The Company has historically
derived a significant majority of its revenues from the licensing of its
flagship anti-virus products and Sniffer products. See "-- Dependence on Revenue
from Flagship Anti-Virus and Sniffer Products." The Company is currently
focusing its efforts on broadening its revenue base by providing network
security and management solutions to enterprise customers, targeting in
particular the Windows NT/Intel platform. In furtherance of this strategy, the
Company recently organized its products into four product suites -- McAfee Total
Virus Defense, PGP
13
15
Total Network Security, and Sniffer Total Network Visibility and McAfee Total
Virus Defense. These four product suites together form an integrated solution
called "Net Tools" which utilizes a new pricing model. See "Business -- Net
Tools." There can be no assurance that potential customers will respond
favorably to the modified pricing structure and the lack of a favorable response
could materially adversely affect the Company's operating results. Although the
Company will continue to offer perpetual licenses with annual support and
maintenance contracts for its Sniffer products, it is currently developing a
subscription licensing model for those products. In addition, in an effort to
increase total Sniffer unit sales the Company intends to develop software only
versions of its Sniffer products -- meaning that the Company would no longer
sell the hardware components contained in the current Sniffer products. There
can be no assurance that the Company can produce a software only Sniffer product
on a timely basis or at all, that customers will not continue to require that
the Company provide the associated hardware platform and components, that total
unit licenses of Sniffer products will increase over previous levels or that
customers will react favorably to the subscription pricing model for Sniffer
products. To the extent that customers do license Sniffer products on a two-year
subscription basis or license significant amounts of software only Sniffer
products, the Company's operating results and financial condition would likely
be affected. In the case of subscription licenses, the Company would, among
other things, expect an increase in deferred revenues related to the service
portion of the two-year Sniffer license that would be capitalized on the
Company's balance sheet. In the initial year of the license, the corresponding
revenue would be lower than if the license were perpetual. In the case of the
software only Sniffer product, for any individual license, the Company would
expect lower total revenues and a higher overall gross margin related to the
transaction, as the Company would not be selling the corresponding hardware
component. Currently, the hardware component has a lower gross margin than the
total product gross margin.
The Company has been acquiring (and is continuing to investigate the
acquisition of) existing independent agents and distributors of its products in
certain strategic markets or has been converting these independent agents into
resellers who must purchase Company products from Company approved distributors.
These actions may require, among other things, that the Company provide the
technical support to customers that was previously provided by such agents and
distributors. There can be no assurance that the Company can provide such
support as effectively or on a timely basis or at all, that the Company will
operate any acquired distributor or agent as successfully as the previous
operators, that the acquisition of any distributor or agent or the conversion of
any agent into a reseller will result in the desired increased foreign revenues
or that the Company will be able to identify and retain suitable distributors in
any market in which it converts an independent agent. See " -- Risks Associated
with Acquisitions Generally" and " -- Risks Related to International Revenue and
Activities."
As part of the Net Tools concept, the Company is in the process of
designing a centralized console from which the various component suites can be
operated, administered and maintained utilizing a common look and feel. The
Company faces significant engineering challenges related to these efforts. In
addition, the Company faces significant engineering and other challenges related
to the integration of its various security products (such as its recently
acquired PGP encryption products and Network General CyberCop product) into a
marketable suite of products and the development of a software only Sniffer
product. Success of the Company's Net Tools suite strategy will also depend, in
part, upon successful development and coordination of the Company's sales force;
on successful development of a national accounts sales force and an effective
indirect sales channel for the Company's Sniffer and PGP security products; and
on the development and expansion of an effective professional services
organization. See " -- Risks Associated with Recent Transactions," " -- Risks
Associated with Acquisitions Generally," " -- Need to Develop Enterprise and
National Accounts Sales Force and Security Products Sales Force; Risks Related
to Direct Sales Force," " -- Use of Indirect Sales Channels; Need to Develop
Indirect Sales Channel for Sniffer and PGP Security Products" and " -- Need to
Expand and Develop An Effective Professional Services Organization."
The foregoing factors, individually or in the aggregate, could materially
adversely affect the Company's operating results and could make comparison of
historic operating results and balances difficult or not meaningful.
14
16
Risks Associated with Acquisitions Generally. The software industry has
experienced and is expected to continue to experience a significant amount of
consolidation. In addition, it is expected that the Company will grow internally
and through strategic acquisitions in order, among other things, to expand the
breadth and depth of its product suites and to build its professional services
organization. The Company continually evaluates potential acquisitions of
complementary businesses, products and technologies. In addition to the
combination with Network General in December 1997, the Company has consummated a
series of significant acquisitions since 1994, including the acquisitions of PGP
and Helix in December 1997, Cinco Networks, Inc. in August 1997, 3DV Technology,
Inc. in March 1997, FSA Corporation of Canada in August 1996, Vycor Corporation
in February 1996, Saber Software Corporation, Inc. in August 1995 and ProTools,
Inc. in January 1994. In addition, since 1995 the Company has acquired a number
of its international distributors, including distributors in Australia, Brazil,
Japan and The Netherlands and is currently investigating acquisitions of
additional foreign distributors. Past acquisitions have consisted of, and future
acquisitions will likely include, acquisitions of businesses, interests in
businesses and assets of businesses. Any acquisition, depending on its size,
could result in the use of a significant portion of the Company's available cash
or, if such acquisition is made utilizing the Company's securities, could result
in significant dilution to the Company's stockholders, and could result in the
incurrence of significant acquisition related charges to earnings. Acquisitions
by the Company may result in the incurrence or the assumption of liabilities,
including liabilities that are unknown or not fully known at the time of
acquisition, which could have a material adverse effect on the Company.
Furthermore, there can be no assurance that any products acquired in connection
with any such acquisition will gain acceptance in the Company's markets or that
the Company will obtain the anticipated or desired benefits of such
transactions.
Achieving the anticipated benefits of an acquisition will depend, in part,
upon whether the integration of the acquired business, products or technology is
accomplished in an efficient and effective manner, and there can be no assurance
that this will occur. Moreover, successful acquisitions in the high technology
industry may be more difficult to accomplish than in other industries. Combining
a merged or acquired company requires, among other things, integration of
product offerings and coordination of sales and marketing and research and
development efforts. There can be no assurance that such an integration can be
accomplished smoothly or successfully. The difficulties of such integration may
be increased by the necessity of coordinating geographically separated
organizations, the complexity of the technologies being integrated, and the
necessity of integrating personnel with disparate business backgrounds and
combining two different corporate cultures. The integration of operations
following an acquisition requires the dedication of management resources that
may distract attention from the day-to-day business, and may disrupt key
research and development, marketing or sales efforts. The inability of
management to successfully integrate any acquisition could have a material
adverse effect on the business, operating results and financial condition of the
Company. In addition, as commonly occurs, during the pre-acquisition and
integration phases of technology company acquisitions, aggressive competitors
may undertake initiatives to attract customers and to recruit key employees
through various incentives.
Rapid Technological Change; Risks Associated with Product Development. The
network security and management market is highly fragmented and is characterized
by ongoing technological developments, evolving industry standards and rapid
changes in customer requirements. The Company's success depends upon its ability
to offer a broad range of network security and management software products, to
continue to enhance existing products, to develop and introduce in a timely
manner new products that take advantage of technological advances, and to
respond promptly to new customer requirements. While the Company believes that
it offers one of the broadest product lines in the network management and
security market, this market is continuing to evolve and customer requirements
are continuing to change. As the market evolves and competitive pressures
increase, the Company believes that it will need to further expand its product
offerings. There can be no assurance that the Company will be successful in
developing and marketing, on a timely basis, enhancements to its existing
products or new products, or that such enhancements or new products will
adequately address the changing needs of the marketplace.
In addition, from time to time, the Company or its competitors may announce
new products with new or additional capabilities or technologies. Such
announcements of new products could have the potential to
15
17
replace, or shorten the life cycles of, the Company's existing products and to
cause customers to defer or cancel purchases of the Company's existing products.
The Company has in the past experienced delays in software development, and
there can be no assurance that the Company will not experience delays in
connection with its current or future product development activities. Complex
software products such as those offered by the Company may contain undetected
errors or version compatibility issues, particularly when first introduced or
when new versions are released, resulting in loss of or delay in market
acceptance. For example, the Company experienced compatibility issues in
connection with its recent NetShield upgrade, and the Company's anti-virus
software products have in the past falsely detected viruses that did not
actually exist. See " -- Risk of False Detection of Viruses." Delays and
difficulties associated with new product introductions, performance or
enhancements could have a material adverse effect on the Company's business,
financial condition and results of operation.
The Company's development efforts are impacted by the adoption or evolution
of industry standards related to its products and the environments in which they
operate. For example, no uniform industry standard has developed in the market
for encryption security products. As industry standards are adopted or evolve,
the Company may be required to modify existing products or develop and support
new versions of existing products. In addition, to the extent that no industry
standard develops, the Company's products and those of its competitors may be
incompatible if they use competing standards, which could prevent or
significantly delay overall development of the market for a particular product
or products. The failure of the Company's products to comply, or delays in
compliance, with existing or evolving industry standards could have a material
adverse effect on the Company's business, financial condition and results of
operation.
The Company's long-term success will depend on its ability on a timely and
cost-effective basis to develop upgrades and updates to its existing product
offerings, to modify and enhance acquired products, and to introduce new
products which meet the needs of current and potential customers. Future
upgrades and updates may, among other things, include additional functionality,
respond to user problems or address issues of compatibility with changing
operating systems and environments. The Company believes that the ability to
provide these upgrades and updates to users frequently and at a low cost is a
key to success. For example, the proliferation of new and changing viruses makes
it imperative to update anti-virus products frequently in order for the products
to avoid obsolescence. Failure to release such upgrades and updates on a timely
basis could have a material adverse effect on the Company's business, financial
condition and results of operations. There can be no assurance that the Company
will be successful in these efforts. In addition, future changes in Windows 95,
Windows NT, NetWare or other popular operating systems may result in
compatibility problems with the Company's products. Further, delays in the
introduction of future versions of operating systems or lack of market
acceptance of future versions of operating systems would result in a delay or a
reduction in the demand for the Company's future products and product versions
which are designed to operate with such future versions of operating systems.
The Company's failure to introduce in a timely manner new products that are
compatible with operating systems and environments preferred by desktop computer
users would have a material adverse effect on the Company's business, financial
condition and results of operations.
Dependence on Revenue from Flagship Anti-Virus and Sniffer Products. In
recent years, the Company has derived a substantial majority of its net revenue
from its flagship McAfee anti-virus software products and Sniffer network fault
and performance management products. These products are expected to continue to
account for a significant portion of the Company's net revenue for the
foreseeable future. Because of this concentration of revenue, a decline in
demand for, or in the prices of, these anti-virus and network management
products as a result of competition, technological change, a change in the
Company's pricing model for such products, the inclusion of anti-virus or
network management and analysis functionality in system hardware or operating
system software or other software or otherwise, or a maturation in the
respective markets for these products could have a material adverse effect on
the Company's business, financial condition and results of operations.
Dependence on Emergence of Network Management and Network Security
Markets. The markets for the Company's network management and network security
products are evolving, and their growth depends upon broader market acceptance
of network management and network security software, including help desk
16
18
software. Although the number of LAN-attached personal computers has increased
dramatically, the network management and network security markets continue to be
emerging markets and there can be no assurance that such markets will continue
to develop or that further market development will be rapid enough to benefit
the Company significantly. In addition, there are a number of potential
approaches to network management and network security, including the
incorporation of management and security tools into network operating systems.
Therefore, even if network management and network security tools gain broader
market acceptance, there can be no assurance that the Company's products will be
chosen by organizations which acquire network management and network security
tools. Furthermore, to the extent that either the network management or network
security market does continue to develop, the Company expects that competition
will increase. See "-- Competition" and "-- Risk of Inclusion of Network
Security and Management Functionality in Hardware and Other Software."
Competition. The markets for the Company's products are intensely
competitive and the Company expects competition to increase in the near-term.
The Company believes that the principal competitive factors affecting the
markets for its products include performance, functionality, quality, customer
support, breadth of product line, frequency of upgrades and updates, integration
of products, manageability of products, brand name recognition, company
reputation and price. Certain of the criteria upon which the performance and
quality of the Company's anti-virus software products compete include the number
and types of viruses detected, the speed at which the products run and ease of
use. Certain of the Company's competitors have been in the network management
market longer than the Company, and other competitors, such as Symantec, Intel,
Seagate and HP, are larger and have greater name recognition than the Company.
The Company will also need to develop name recognition for its new name,
"Network Associates." In addition, certain larger competitors such as Intel,
Microsoft and Novell have established relationships with hardware vendors
related to their other product lines. These relationships may provide them with
a competitive advantage in penetrating the OEM market with their network
security and management products. As is the case in many segments of the
software industry, the Company has been encountering, and expects to further
encounter, increasing competition. This increased competition could reduce
average selling prices and, therefore, profit margins. Competitive pressures
could result not only in sustained price reductions but also in a decline in
sales volume, which events would materially adversely affect the Company's
business, financial condition and results of operations. In addition,
competitive pressures may make it difficult for the Company to maintain or
exceed its growth rate.
Although there is a trend toward consolidation in the network security and
management market, the market is currently highly fragmented with products
offered by many vendors. The Company's principal competitor is the Peter Norton
Group of Symantec in the network security market and Intel's LanDesk in the
network management market. The Company's other competitors include Computer
Associates/Cheyenne Software, IBM, Seagate, the Dr. Solomon Group and Trend
Micro, Inc., as well as numerous smaller companies and shareware authors that
may in the future develop into stronger competitors or be consolidated into
larger competitors. In the encryption portion of the security market, the
Company's principal competitors are Security Dynamics Technologies, Inc., Cylink
Corporation, Entrust Technologies and VeriSign, Inc. The Company's principal
competitors in the help desk market are Remedy Corporation, Software Artistry
(recently acquired by Tivoli Systems/IBM) and Magic Solutions, Inc. The
Company's principal competitor in the software-based network fault and
performance management market is HP, with other competitors including Azure
Technologies Incorporated, Concord Communications, DeskTalk Systems, Kaspia
Systems, Shomiti Systems, Inc. and Wandel & Goltermann, Inc. The Company also
faces competition in the security market from Cisco, Security Dynamics
Technologies, Inc., Checkpoint Software and other vendors in the
encryption/firewall market. In addition, the Company faces competition from
large and established software companies such as Microsoft, Intel, Novell and HP
which offer network management products as enhancements to their network
operating systems. As the network management market develops, the Company may
face increased competition from these large companies, as well as other
companies seeking to enter the market. The trend toward enterprise-wide network
management and security solutions may result in a consolidation of the network
management and security market around a smaller number of vendors who are able
to provide the necessary software and support capabilities. In addition, to the
extent that the Company is successful in developing its Net Tools suite of
products designed around a centralized management and
17
19
administration console for the Windows NT platform, the Company will likely
compete with large computer systems management companies such as Tivoli Systems
(TME) and Computer Associates (Unicenter). There can be no assurance that the
Company will continue to compete effectively against existing and potential
competitors, many of whom have substantially greater financial, technical,
marketing and support resources and name recognition than the Company. In
addition, there can be no assurance that software vendors who currently use
traditional distribution methods will not in the future decide to compete more
directly with the Company by utilizing electronic software distribution.
The competitive environment for anti-virus software internationally is
similar to that in North America, although local competitors in specific foreign
markets often present stronger competition and shareware authors control a more
significant portion of the European market. The international market for network
management software has developed more slowly than the North American market,
although larger competitors such as Intel and Symantec have begun to penetrate
European markets. Asian markets have lagged significantly behind North America
and Europe in their adoption of networking technology. There can be no assurance
that the Company will be able to compete successfully in international markets.
Need to Develop Enterprise and National Accounts Sales Force and Security
Products Sales Force; Risks Related to Direct Sales Force. In connection with
its recent acquisitions and as part of its evolving strategy of offering product
suites under the Net Tools umbrella, the Company has recently reorganized its
direct sales force into three tiers. The first tier focuses on the sale of the
full product suite under the Net Tools umbrella to enterprise and national
account customers. The second tier consists of four separate sales groups
focused on the sale of the individual product suites (i.e., McAfee Total Virus
Defense; PGP Total Network Security; Sniffer Total Network Visibility; or McAfee
Total Service Desk) to the departmental level. The third tier consists of four
separate outbound corporate telesales forces who actively market the Company's
individual product suites to customers with less than 1,000 nodes. The Company
historically has not had a large enterprise or national accounts sales force and
only recently developed a direct sales group focused on these larger accounts.
In addition, the Company has not historically had a separate sales force focused
on the sale of its suite of security products (many of which were only recently
acquired and are currently being engineered into a common suite). To succeed in
the direct sales channel for the enterprise and national accounts market and for
the sale of the separate security product suite, the Company will be required to
build a significant direct sales organization and will be required to attract
and retain qualified personnel, which personnel will require training about, and
knowledge of, product attributes for the Company's suite of products. There can
be no assurance that the Company will be successful in building the necessary
sales organization or in attracting, retaining or training these individuals.
Historically, the Company has sold its products at the departmental level. To
succeed in the enterprise and national accounts market will require, among other
things, establishing relationships and contacts with senior technology officers
at these accounts. There can be no assurance that the Company or its sales force
will be successful in these efforts.
The Company's sales organization structure may result in multiple customer
contacts by different Company sales representatives (particularly in
circumstances where the customer has multiple facilities and offices), a lack of
coordination between the Company's various sales organizations and a lack of
focus by the individual sales representatives on their designated customers or
products. The occurrence of these events could lead to customer confusion,
disputes in the sales force and lost revenue opportunities which could have a
material adverse effect on the Company's business, financial condition and
results of operations. In addition, while the development of a direct sales
channel reduces the Company's dependence on resellers and distributors, it may
lead to conflicts for the same customers and further customer confusion,
pressure by current and prospective customers for price reductions on products
and, consequently, in reductions in the Company's gross margin and operating
profit.
Use of Indirect Sales Channels; Need to Develop Indirect Sales Channel for
Sniffer and PGP Security Products. The Company markets a significant portion of
its products to end-users through distributors, resellers and VARs. The
Company's distributors sell other products that are complementary to, or compete
with, those of the Company. While the Company encourages its distributors to
focus on its products through market and support programs, there can be no
assurance that these distributors will not give greater priority to products of
other suppliers, including competitors.
18
20
The Company does not have an extensive indirect sales channel for its
Network Sniffer products or its PGP security products. To succeed in the
indirect sales channel, the Company will be required to build a more extensive
network of distributors, resellers and VARs who will support and market these
products. These indirect channel participants will require significant training
about, and knowledge of, product attributes for these products and the related
product suites. There can be no assurance that the Company can successfully
establish such an indirect channel on a timely basis or at all or that such a
channel, once established, can be maintained.
The Company's agreements with its distributors provide for a right of
return. This right of return may be triggered by a number of events, including
returns to distributors by end users, inaccurate estimates of end user demand by
distributors, increased purchases by distributors in response to sales
incentives or transitions to new products or versions of products. As a result
of this right of return, revenue recognized by the Company upon sales to
distributors is subject to a reserve for returns. Returns could exceed reserves
as a result of distributors holding excessive Company product inventory. There
can be no assurance that current or future reserves established by the Company
will be adequate.
Need to Expand and Develop An Effective Professional Services Organization;
Risks Related to Third-Party Professional Services. As the Company's products
and computer networks become more complex, customers will increasingly require
greater professional assistance in the design, installation, configuration and
implementation of their networks and acquired products. To date, the Company has
relied on its limited professional services capabilities and increasingly on
outside professional service providers (including its distributors, resellers
and system integrators). There can be no assurance that third party service
providers can or will continue to be willing to provide adequate levels (both in
terms of time and quality) of professional services. Moreover, reliance on these
third parties reduces the Company's control over the provision of support
services for its products and places a greater burden on these third parties,
which, in turn, could delay the Company's recognition of product revenue, could
harm the Company's relationships or reputation with such third parties or the
end users of its products and could result in decreased future sales of, or
prices for, its products.
To more effectively service its customer's evolving needs, the Company
intends to significantly expand and develop its worldwide professional service
organization. There can be no assurance that the Company will be successful in
its efforts to expand and develop an effective professional services
organization. This will require that the Company hire and train additional
service professional who must be continually trained and educated to ensure that
they possess sufficient technical skills and product knowledge. In particular,
the market for qualified professionals is intensely competitive, making hiring
and retention difficult. The Company expects significant competition in this
market from existing providers of professional services and future entrants. The
Company must also properly price its services to attract customers, while
maintaining sufficient margins for its services. The Company expects that it
will have lower profit margins on its service revenues. The failure to develop
an effective professional services organization could have a material adverse
effect on the Company's business, financial condition and results of operations.
Reliance on Microsoft Technology. Although the Company intends to support
other operating systems, the Company's mission is to be the leading supplier of
network security and management products for Windows NT/Intel based networks.
Sales of the Company's products would be materially and adversely affected by
market developments which are adverse to the Windows operating environments,
including the failure of users and application developers to accept Windows NT.
In addition, the Company's ability to develop products using the Windows
operating environments is substantially dependent on its ability to gain timely
access to, and to develop expertise in, current and future developments by
Microsoft, of which there can be no assurance.
Risks Associated with Failure to Manage Growth. The Company's growth
internally and through its numerous acquisitions has placed, and any further
expansion would continue to place, a significant strain on its limited
personnel, management and other resources. In the future, the Company's ability
to manage any growth, particularly with the anticipated expansion of the
Company's international business and growth in indirect channel business, will
require it to attract, train, motivate and manage new employees successfully, to
19
21
effectively integrate new employees into its operations and to continue to
improve its operational, financial, management and information systems and
controls. The failure to effectively manage any further growth could have a
material adverse effect on the Company's business, financial condition and
results of operations.
Proprietary Technology and Rights; Litigation. The Company's success is
heavily dependent upon proprietary software technology. The Company relies on a
combination of contractual rights, trademarks, trade secrets and copyrights to
establish and protect proprietary rights in its software. There can be no
assurance these protections will be adequate or that competitors will not
independently develop technologies or products that are substantially equivalent
or superior to the Company's products.
The Company recently changed its legal name to "Networks Associates, Inc."
and has recently begun conducting business as "Network Associates." The Company
believes that there are a number of other companies with similar names and,
although the Company has not been served in any suit, three companies (including
Network Associates Corporation in California and Network Associates, Inc. in
Oregon) have made claims (including various trademark claims) or demands with
respect to the Company's use of the name Network Associates. There can be no
assurance that the Company will be able to enforce rights in that name, that it
will be free to use the name in all jurisdictions, that there will be no
additional challenges to the use of that name or that it will not be required to
expend significant resources in securing the use of that name.
The Company does not typically obtain signed license agreements from its
corporate, government and institutional customers who license products directly
from it. The Company includes an electronic version of a "shrink-wrap" license
in all of its electronically distributed software and a printed license in the
box for its products distributed through traditional distribution channels in
order to protect its copyrights and trade secrets in those products. Since none
of these licenses are signed by the licensee, many authorities believe that such
licenses may not be enforceable under the laws of many states and foreign
jurisdictions. In addition, the laws of some foreign countries either do not
protect proprietary rights or offer only limited protection for those rights.
There can be no assurance that the steps taken by the Company to protect its
proprietary software technology will be adequate to deter misappropriation of
this technology. For example, the Company is aware that a substantial number of
users of its anti-virus products have not paid any registration or license fees
to the Company. Changing legal interpretations of liability for unauthorized use
of the Company's software, or lessened sensitivity by corporate, government or
institutional users to avoiding copyright infringement, could have a material
adverse effect on the Company's business, financial condition and results of
operations.
The Company's principal assets are its intellectual property, and the
Company competes in an increasingly competitive market. There has been
substantial litigation regarding intellectual property rights of technology
companies. The Company has in the past been, and currently is, subject to
litigation related to its intellectual property (including a pending unfair
trade practice case and a patent infringement case involving Symantec and Trend
Micro Inc., respectively). There can be no assurance that there will be no
developments arising out of such pending litigation or any other litigation to
which the Company is or may become party which could have a material adverse
effect on the Company's business, financial condition and results of operation.
See "Item 3, Legal Proceedings."
In addition, as the Company may acquire a portion of software included in
its products from third parties, its exposure to infringement actions may
increase because it must rely upon such third parties as to the origin and
ownership of any software being acquired. Similarly, exposure to infringement
claims exists and will increase to the extent that the Company employs or hires
additional software engineers previously employed by competitors,
notwithstanding measures taken by them to prevent usage by such software
engineers of intellectual property used or developed by them while employed by a
competitor. In the future, litigation may be necessary to enforce and protect
trade secrets and other intellectual property rights owned by the Company. The
Company may also be subject to litigation to defend it against claimed
infringement of the rights of others or to determine the scope and validity of
the proprietary rights of others. Any such litigation could be costly and cause
diversion of management's attention, either of which could have a material
adverse effect on the Company's business, financial condition and results of
operations. Adverse determinations in such litigation could result in the loss
of the Company's proprietary rights, subject the Company to significant
liabilities, require the Company to seek licenses from third parties or prevent
the Company from manufacturing or
20
22
selling its products, any one of which could have a material adverse effect on
the Company's business, financial condition and results of operations.
Furthermore, there can be no assurance that any necessary licenses will be
available on reasonable terms, or at all.
Risks Related to International Revenue and Activities. In 1997, 1996 and
1995, net revenue from international licenses represented approximately 28%, 24%
and 25%, respectively, of the Company's net revenue. Historically, the Company
has relied primarily upon independent agents and distributors to market its
products internationally. The Company expects that international revenues will
continue to account for a significant percentage of net revenue. The Company
also expects that a significant portion of such international revenue will be
denominated in local currencies. To reduce the impact of foreign currency
fluctuations, the Company uses non-leveraged forward currency contracts.
However, there can be no assurance that the Company's future results of
operations will not be adversely affected by such fluctuations or by costs
associated with currency risk management strategies. Other risks inherent in
international revenue generally include the impact of longer payment cycles,
greater difficulty in accounts receivable collection, unexpected changes in
regulatory requirements, seasonality due to the slowdown in European business
activity during the third quarter, tariffs and other trade barriers,
uncertainties relative to regional economic circumstances (such as the current
economic turbulence in Asia), political instability in emerging markets and
difficulties in staffing and managing foreign operations. There can be no
assurance that these factors will not have a material adverse effect on the
Company's future international license revenue. Further, in countries with a
high incidence of software piracy, the Company may experience a higher rate of
piracy of its products.
There are a number of additional risks related to the export of the Company's
PGP security products. See "-- Risks Relating to Cryptography Technology."
In addition, a portion of the Company's international revenue is expected
to continue to be generated through independent agents. Since these agents will
not be employees of the Company and will not be required to offer the Company's
products exclusively, there can be no assurance that they will continue to
market the Company's products. Also, the Company is likely to have limited
control over its agents, limited access to the names of the customers to whom
the agents sell its products and limited knowledge of the information provided
by, or representations made by, these agents to its customers.
Risk of Sabotage. Given the Company's high profile in the anti-virus
software market, the Company has been a target of computer "hackers" who have
created viruses to sabotage its products. While to date these viruses have been
discovered quickly and their dissemination has been limited, there can be no
assurance that similar viruses will not be created in the future, that they will
not cause damage to users' computer systems and that demand for the Company's
software products will not suffer as a result. In addition, since the Company
does not control diskette duplication by distributors or its independent agents,
there can be no assurance that diskettes containing the Company's software will
not be infected.
Risk of False Detection of Viruses. The Company's anti-virus software
products have in the past and may at times in the future falsely detect viruses
that do not actually exist. Such "false alarms," while typical in the industry,
may impair the perceived reliability of the Company's products and may therefore
adversely impact market acceptance of the Company's products. In addition, the
Company has in the past been subject to litigation claiming damages related to a
false alarm, and there can be no assurance that similar claims will not be made
in the future.
Risks Relating to Cryptography Technology. Certain of the Company's PGP
network security products, technology and associated assistance are subject to
export restrictions administered by the U.S. Department of State and the U.S.
Department of Commerce, which permit the export of encryption products only with
the required level of export license. In addition, these U.S. export laws
prohibit the export of encryption products to a number of countries deemed
hostile by the U.S. government. U.S. export regulations regarding the export of
encryption technology require either a transactional export license or the
granting of Department of Commerce Commodity jurisdiction. As result of this
regulatory regime, foreign competitors facing less stringent controls on their
products may be able to compete more effectively than the Company in the global
market. While the Company has obtained approval from the Department of Commerce
to export to certain end users, there can be no assurance that the U.S.
government will approve pending or future export license
21
23
requests. Further, there can be no assurance that the list of products and
countries for which export approval is required, and the regulatory policies
with respect thereto, will not be revised from time to time. Failure to obtain
the required licenses or the costs of compliance could have a material adverse
effect on the Company's international revenues.
The Company's PGP network security products are dependent on the use of
public key cryptography technology, which depends in part on the application of
certain mathematical principles known as "factoring." The security afforded by
public key cryptography technology is predicated on the assumption that the
factoring of the composite of large prime numbers is difficult. Should an easy
factoring method be developed, then the security afforded by encryption products
utilizing public key cryptography technology would be reduced or eliminated.
Furthermore, any significant advance in techniques for attacking cryptographic
systems could also render some or all of the Company's existing products and
services obsolete or unmarketable. There can be no assurance that such
developments will not occur. Moreover, even if no breakthroughs in factoring or
other methods of attacking cryptographic systems are made, factoring problems
can theoretically be solved by computer systems significantly faster and more
powerful than those presently available. If such improved techniques for
attacking cryptographic systems are ever developed, it could have a material
adverse effect on the Company's business, operating results and financial
condition.
Product Liability. The Company's anti-virus and network management software
products are used to protect and manage computer systems and networks that may
be critical to organizations and, as a result, the sale and support of these
products by the Company may entail the risk of product liability and related
claims. The Company's license agreements with its customers typically contain
provisions designed to limit the Company's exposure to potential product
liability claims. It is possible, however, that the limitation of liability
provisions contained in these license agreements may not be effective under the
laws of certain jurisdictions, particularly in circumstances involving unsigned
licenses. A product liability claim brought against the Company could have a
material adverse effect on the Company's business, financial condition and
results of operations.
Dependence upon Key Personnel. The success of the Company will depend to a
significant extent upon a number of key technical and management employees.
While employees are required to sign standard agreements concerning
confidentiality and ownership of inventions, Company employees are generally not
otherwise subject to employment agreements or to noncompetition covenants. The
loss of the services of any key employees could have a material adverse effect
on the Company's business, financial condition and results of operations. The
Company does not maintain life insurance policies on its key employees. The
ability of the Company to achieve its revenue and operating performance
objectives will depend in large part on its ability to attract and retain
technically qualified and highly skilled sales, consulting, technical, marketing
and management personnel. Competition for such personnel is intense and is
expected to remain so for the foreseeable future. There can be no assurance the
Company will be successful in retaining its existing key personnel and in
attracting and retaining the personnel it requires, and failure of the Company
to retain and grow its key employee population could adversely affect the
Company's business and operating results. Further, additions of new and
departures of existing personnel, particularly in key positions, can be
disruptive and can result in departures of existing personnel, which could have
a material adverse effect upon the Company's business, operating results and
financial condition.
Customer Purchase Decisions; Potentially Longer Sales and Implementation
Cycles for Certain Products Suites. The products offered by the Company may be
considered to be capital purchases by certain customers or prospective
customers. Capital purchases are often considered discretionary and, therefore,
are canceled or delayed if the customer experiences a downturn in its business
or prospects or as a result of economic conditions in general. Any such
cancellation or delay could adversely affect the Company's results of
operations. In addition, as the Company proceeds with its strategy of selling
product suites under the Net Tools umbrella (particularly to larger enterprise
and national accounts), its sales cycle is likely to lengthen. Such sales may
involve a lengthy education process and a significant technical evaluation and
commitment of capital and other resources and may be subject to the risk of
delays associated with customers' internal budget and other procedures for
approving large capital expenditures, deploying new technologies within their
networks and testing and accepting new technologies that affect key operations.
Because of the potentially
22
24
lengthy sales cycle and the potentially large size of such orders, if orders
forecasted for a specific customer for a particular quarter are not realized or
revenues are not otherwise recognized in that quarter, the Company's operating
results for that quarter could be materially adversely affected. See
"-- Variability of Quarterly Operating Results" and "Management's Discussion and
Analysis of Financial Condition and Results of Operations."
Year 2000 Compliance. Many currently installed computer systems and
software products are coded to accept only two digit entries in the date code
field. These date code fields will need to accept four digit entries to
distinguish 21st century dates from 20th century dates. As a result, many
companies' software and computer systems may need to be upgraded or replaced in
order to comply with such "Year 2000" requirements. Although the Company
believes that its products and systems are Year 2000 compliant, the Company
utilizes third-party equipment and software that may not be Year 2000 compliant.
Failure of such third-party equipment or software to operate properly with
regard to the Year 2000 and thereafter could require the Company to incur
unanticipated expenses to remedy any problems, which could have a material
adverse effect on the Company's business, operating results and financial
condition. The business, operating results and financial condition of the
Company's customers could be adversely affected to the extent that they utilize
third-party software products which are not Year 2000 compliant. Furthermore,
the purchasing patterns of customers or potential customers may be affected by
Year 2000 issues as companies expend significant resources to correct their
current systems for Year 2000 compliance. These expenditures may result in
reduced funds available to purchase products and services such as those offered
by the Company, which could have a material adverse effect on the Company's
business, operating results and financial condition.
Supplier Dependence; Third Party Manufacturing. Certain of the Company's
products contain critical components supplied by a single or a limited number of
third parties. The Company has been required to purchase and inventory certain
of the computer platforms around which it designs its network fault and
performance management products to ensure an available supply of the product for
its customers. Any significant shortage of these platforms or other components
or the failure of the third party supplier to maintain or enhance these products
could lead to cancellations of customer orders or delays in placement of orders
which could materially adversely affect the Company's results of operations. If
the Company's purchase of such components or platforms exceeds demand, the
Company could incur losses or other charges in disposing of excess inventory,
which could also materially adversely affect the Company's results of
operations.
The Company's manufacturing operations consist primarily of final assembly,
testing and quality control of materials, components, subassemblies and systems
for its Sniffer based products. The Company intends to outsource these
manufacturing operations in 1998. There can be no assurance that the Company
will be able to qualify and secure on commercially acceptable terms satisfactory
third party manufacturers on a timely basis or at all. In addition, reliance on
third party manufacturers will involve a number of risks, including the lack of
direct control over the manufacturing process, the absence or unavailability of
adequate capacity and reduced control over delivery schedules, quality control
and costs. In the event that, once initially secured, the Company's third party
manufacturers are unable or unwilling to continue to manufacture the Sniffer
based products in required volumes, on a cost effective basis, in a timely
manner or at all, the Company will have to secure additional manufacturing
capacity. Even if such additional capacity is available at commercially
acceptable terms, the qualification process could be lengthy and could create
delay in product shipments.
Possible Price Volatility of Common Stock. The trading price of the
Company's Common Stock has historically been, and is expected to be, subject to
wide fluctuations. The market price of the Common Stock may be significantly
impacted by quarterly variations in financial performance, shortfalls in revenue
or earnings from levels forecast by securities analysts, changes in estimates by
such analysts, market conditions in the computer software or hardware
industries, product introductions by the Company or its competitors,
announcements of extraordinary events such as acquisitions or litigation or
general economic conditions. Statements or changes in opinions, ratings, or
earnings estimates made by brokerage firms or industry analysts relating to the
market in which the Company does business or relating to the Company
specifically could result in an immediate and adverse effect on the market price
of the Common Stock. In addition, in recent years the stock market has
experienced extreme price and volume fluctuations. These fluctuations have had a
substantial effect on the market prices for many high technology and emerging
growth companies, often
23
25
unrelated to the operating performance of the specific companies. There can be
no assurances that the market price of the Common Stock will not decline below
the levels prevailing at the time of this offering. Securities class action
lawsuits are often brought against companies following periods of volatility in
the market price of their securities. Any such litigation against the Company
could result in substantial costs and a diversion of resources and management
attention.
Effect of Certain Provisional Anti-Takeover Effects of Certificate of
Incorporation, Bylaws and Delaware Law. The board of directors of the Company
has the authority to issue up to 5,000,000 shares of Preferred Stock and to
determine the price, rights, preferences, privileges and restrictions, including
voting rights, of those shares without any further vote or action by its
stockholders. The rights of the holders of Company Common Stock will be subject
to, and may be adversely affected by, the rights of the holders of any Preferred
Stock that may be issued in the future. The issuance of Preferred Stock, while
providing desirable flexibility in connection with possible acquisitions and
other corporate purposes, could have the effect of making it more difficult for
a third party to acquire a majority of the outstanding voting stock. Further,
certain provisions of Delaware law and the Company's Certificate of
Incorporation and Bylaws, such as a classified board, could delay or make more
difficult a merger, tender offer or proxy contest involving the Company. While
such provisions are intended to enable the Company's Board to maximize
stockholder value, they may have the effect of discouraging takeovers which
could be in the best interest of certain stockholders. There is no assurance
that such provisions will not have an adverse effect on the market value of the
Company's