Thompson says that is possible to include transaction-based security products, but it is not probable because this would mean working in the domain of the big giants like MS .NET, Sun, Cisco etc. Part of the problem is that security has been an after-thought. In the future, they will become more a part of application design. Many web server based and platform based companies will have to integrate that more tightly into their solution set. Thompson would rather focus on infrastructure and let them focus on transaction.