Cisco this week expanded its Tetration Analytics system to let users quickly detect software vulnerabilities and more easily manage the security of the key components in their data centers. Introduced in 2016, the Cisco Tetration Analytics system gathers information from hardware and software sensors and analyzes the information using big data analytics and machine learning to offer IT managers a deeper understanding of their data center resources. The idea behind Tetration includes the ability to dramatically improve enterprise security monitoring, simplify operational reliability and move along application migrations to Software Defined Networking. Cisco said another key driver behind the technology is to give customers a single tool to collect consistent security telemetry across the entire data center and analyze large volumes of data in real time. In a multi-cloud enterprise, Tetration can lock-down tens of millions of whitelist policy entries across thousands of … [Read more...] about Cisco bolsters Tetration for better cloud, workload security
Cisco cloud web security
Cisco plans to acquire London-based security vendor ScanSafe in a $183m deal aimed at furthering its push into cloud computing and expanding its web security portfolio. In its announcement on Tuesday, the California-based networking giant said it will pay for privately held ScanSafe in cash and retention-based incentives. It expects to close the deal in the second quarter of its fiscal year, which ends in January. ScanSafe is a five-year-old provider of software-as-a-service (SaaS) web security, and that service will be integrated into Cisco's AnyConnect VPN client, Cisco said. The British security provider also has a worldwide network of carrier-grade datacentres and multi-tenant architecture that will be used for Cisco's cloud security services. "With the acquisition of ScanSafe, Cisco is executing on our vision to build a borderless network security architecture that combines network and cloud-based services for advanced security enforcement," Tom Gillis, general manager of … [Read more...] about Cisco to buy UK web-security vendor ScanSafe
Though the now-infamous Heartbleed bug is currently being patched by many companies on the website level, the OpenSSL data encryption flaw also affects an unknown amount of networking hardware from companies including Cisco Systems.Cisco published a bulletin on its site, warning that some of its networking hardware and software, which includes routers, Ethernet switches, access points, and more, is affected by the Heartbleed bug, a flaw in the OpenSSL data encryption software used by many of the world’s websites. Though most of this hardware wouldn’t be found in the average person’s home, the hardware that Cisco identifies as vulnerable is likely used by private companies, governments, and other organizations.We reached out to Cisco for comment, and asked whether a patched website would still be vulnerable to Heartbleed if the organization running the site is still using Cisco hardware and/or services to keep it up and running. Nigel Glennie, Senior Manager of Global … [Read more...] about Which Cisco routers, modems and networking gear are affected by and safe from the Heartbleed bug?
In the latest chapter of what it calls its "Secure Borderless Network" initiative, Cisco Wednesday is announcing expanded reporting capability for its ScanSafe Web-filtering service as well as the addition of a data-loss prevention option for the company's cloud-based e-mail security service. In the latest chapter of what it calls its "Secure Borderless Network" initiative, Cisco Wednesday is announcing expanded reporting capability for its ScanSafe Web-filtering service as well as the addition of a data-loss prevention option for the company's cloud-based e-mail security service.Cisco launches new servers, switches, SANs to sweep through the data center Cisco, which acquired ScanSafe in December, says its offering now provides user behavior trends, details on any company policy violations, malware statistics and forensic analysis information. "It shows you how people use your network for Internet [access], which Web sites they're visiting, which sites you're blocking," says Garry … [Read more...] about Cisco expands cloud-based security services
Despite its leadership position in most enterprise security product areas, Cisco faces a number of technological and competitive challenges to stay out in front.For example, the overarching security plan Cisco outlined two years ago known as SecureX remains very much a work in progress. The basic idea behind SecureX is to give customers a broad view of what computer and mobile device users are doing on the network.The SecureX architecture has been called over-complicated and perhaps too dependent on having a Cisco-based infrastructure, but the basic idea is that by collecting real-time information about the individual's network usage and applications, device make, location and other variables, appropriate security policies can be established for network authorization.[ RELATED: Dell: We can beat Cisco in enterprise and cloud securityAMORE ON SECURITY: 13 of the biggest security myths busted ]Originally spearheading SecureX was Tom Gillis, a former vice president and general manager for … [Read more...] about Where do Cisco’s network security plans go from here?
As more of the internet adopts HTTPS everywhere to secure communications, enterprises rely on inspection tools to examine encrypted traffic to make sure it doesn't contain malicious activity. Unfortunately, the devices intended to verify the security of networking communications appear to be undermining HTTPS, US-CERT warned."All systems behind a HTTPS interception product are potentially affected," the Department of Homeland Security's United States Computer Emergency Response Team wrote in its advisory.The advisory refers to interception products, including inline network appliances like firewalls, secure web gateways, and data-loss-prevention products; client-side software like antivirus; and cloud-based inspection services. Networking and security vendors like Blue Coat, Barracuda, Cisco, Microsoft, Sophos, Arbor Networks, Check Point, Symantec, F5 Networks, Fortinet, IBM Security, Juniper, Trustwave, and Trend Micro include TLS/SSL inspection in their products.While US-CERT … [Read more...] about Warning: Your networking tools are weakening your web security
Cisco this week introduced a set of security products designed to fortify data centers as they consolidate, virtualize and morph into clouds.The new offerings, all available now, are intended to enable enforcement of end-to-end security for high-capacity data centers and mobile workforces. They include:• A new software release for Cisco's Adaptive Security Appliance (ASA) firewalls;• Virtualized ASA for multi-tenant environments;• Data center-optimized intrusion prevention system (IPS);• And enhancements to the Cisco AnyConnect Secure Mobility Client software.IN PICTURES: Cisco aims to secure the data centerRELATED: 15 more useful Cisco sites CH-CH-CH-CHANGES: How BYOD has changed the IT landscape Cisco says the products all comply with its SecureX security architecture unveiled in February, 2011. SecureX is designed to provide a context-aware way to safeguard networks increasingly overrun with smartphones, tablets and virtualization.With a SecureX … [Read more...] about Cisco looks to secure the data center with new releases
Cisco has given us a big makeover for one of their premier Professional Level Certifications - the Cisco Certified Network Professional Security (CCNP Security) Certification. The 2014 updates retire some devices and technologies from coverage, and replace these with some of the latest and greatest in Cisco's security portfolio. It does seem that in the area of security, Cisco makes the most sweeping changes, retiring products with no warning. The ever-changing network security landscape certainly helps to make this a reality. As we examine this updated certification, the first thing to consider is the prerequisite requirements. The most common method of meeting the prerequisites is to simply possess the CCNA Security certification. The simplest path to CCNA Security is to possess the CCENT Certification and then pass 640-554 IINS. A less common method of meeting the prerequisites is to possess any valid CCIE Certification from Cisco Systems. This is actually how I … [Read more...] about Cisco’s Latest CCNP Security Updates
Cisco Systems released software security updates Wednesday to address denial-of-service and arbitrary command execution vulnerabilities in several products, including a known flaw in the Apache Struts development framework used by some of them.The company released new versions of Cisco IOS XR Software to fix an issue with handling fragmented packets that can be exploited to trigger a denial-of-service condition on various Cisco CRS Route Processor cards. The affected cards and the patched software versions available for them are listed in a Cisco advisory. [ InfoWorld presents the Bossies 2013, the best open source software for networking, data centers, clouds, and more. | Get expert networking how-to advice from InfoWorld's Networking Deep Dive PDF special report. ]The company also released security updates for Cisco ISE (Identity Services Engine), a security policy management platform for wired, wireless, and VPN connections. The updates fix a vulnerability that could be exploited … [Read more...] about Cisco fixes serious security flaws in networking, communications products