IDG News Service - Cisco Systems Inc. today is expected to announce a number of new security features for its networking products, including a security service it has developed with Trend Micro Inc. that's designed to cut down on the spread of worms and viruses.
The new service, called the Cisco Incident Control System (ICS), will help administrators set network security policies on Cisco hardware based on information provided by antivirus vendor Trend Micro, said Joel McFarland, a product manager at Cisco's security technology group.
Cisco had already partnered with Cupertino, Calif.-based Trend Micro to make its worm and virus signatures available via the Cisco Intrusion Prevention System (IPS), and the companies are working together on security enhancements for the Cisco ASA 5500 Series adaptive security appliance, McFarland said.
With the new ICS offering, customers will be able to block the spread of malicious software by using the service to distribute mitigation policies across Cisco networks. "This is really something that delivers an entirely new class of response time," McFarland said. "In a single choreographed move, I can force the enterprise to take a more protective posture."
ICS could save network administrators time by automating router and switch configuration, said Joel Conover, an analyst at Current Analysis Inc.
But while the service will help protect networks from known threats, like the recent Zotob family of worms, it won't do much to prevent so-called zero-day attacks, which are based on exploits that haven't yet been cataloged by antivirus companies such as Trend Micro, he said.
Administrators also will have to be careful with ICS to make sure that the rules and policies it implements don't break other applications running on the network, Conover said. "The question is, How do you check for the business impact of these rules?" he said. "You get this rule from Trend Micro. ... Do you apply it immediately?"
To make things less disruptive, ICS will have a rollback feature, which will allow administrators to uninstall the security policies should they cause important applications to fail, he said.
Cisco's other product enhancements include an updated version of the Cisco Security Monitoring, Analysis and Response System that can identify and respond to security threats in remote locations such as branch offices. The networking vendor also plans to release a new version of its Cisco IPS sometime this month and will release a new version of its Internetworking Operating System router operating system in November.
The Cisco ICS will be available next month, with prices starting at $9,200, Cisco said.
Free Insider Guide
Rising salaries boost IT optimism, though not everyone is feeling upbeat. Our survey of 4,000+ IT workers shows who's riding the wave and why. Use our interactive tool and compare your own paycheck. Read more...
Copyright © 1994 - 2013 Computerworld Inc. All rights reserved. Reproduction in whole or in part in any form or medium without express written permission of Computerworld Inc. is prohibited. Computerworld and Computerworld.com and the respective logos are trademarks of International Data Group Inc.
