Cisco teams with Trend Micro on security service
It hopes to cut down on the spread of worms and viruses
IDG News Service - Cisco Systems Inc. today is expected to announce a number of new security features for its networking products, including a security service it has developed with Trend Micro Inc. that's designed to cut down on the spread of worms and viruses.
The new service, called the Cisco Incident Control System (ICS), will help administrators set network security policies on Cisco hardware based on information provided by antivirus vendor Trend Micro, said Joel McFarland, a product manager at Cisco's security technology group.
Cisco had already partnered with Cupertino, Calif.-based Trend Micro to make its worm and virus signatures available via the Cisco Intrusion Prevention System (IPS), and the companies are working together on security enhancements for the Cisco ASA 5500 Series adaptive security appliance, McFarland said.
With the new ICS offering, customers will be able to block the spread of malicious software by using the service to distribute mitigation policies across Cisco networks. "This is really something that delivers an entirely new class of response time," McFarland said. "In a single choreographed move, I can force the enterprise to take a more protective posture."
ICS could save network administrators time by automating router and switch configuration, said Joel Conover, an analyst at Current Analysis Inc.
But while the service will help protect networks from known threats, like the recent Zotob family of worms, it won't do much to prevent so-called zero-day attacks, which are based on exploits that haven't yet been cataloged by antivirus companies such as Trend Micro, he said.
Administrators also will have to be careful with ICS to make sure that the rules and policies it implements don't break other applications running on the network, Conover said. "The question is, How do you check for the business impact of these rules?" he said. "You get this rule from Trend Micro. ... Do you apply it immediately?"
To make things less disruptive, ICS will have a rollback feature, which will allow administrators to uninstall the security policies should they cause important applications to fail, he said.
Cisco's other product enhancements include an updated version of the Cisco Security Monitoring, Analysis and Response System that can identify and respond to security threats in remote locations such as branch offices. The networking vendor also plans to release a new version of its Cisco IPS sometime this month and will release a new version of its Internetworking Operating System router operating system in November.
The Cisco ICS will be available next month, with prices starting at $9,200, Cisco said.
- Warning: Cloud Data at Risk Experts agree that relying on SaaS vendors to backup and restore your data is dangerous. Yet that's exactly what huge portions of the...
- The Opportunities and Challenges of the Cloud In this report F5 poses questions to IDC analysts, Sally Hudson and Phil Hochmuth, on behalf of F5's customers to better understand the...
- Mobile First: Securing Information Sprawl Learn how the partnership between Box and MobileIron can help you execute a "mobile first" strategy that manages and secures both mobile apps...
- The Truth About Cloud Security "Security" is the number one issue holding business leaders back from the cloud. But does the reality match the perception?
- What should I look for in a Next Generation Firewall? SANS Provides Guidance With so many vendors claiming to have a Next Generation Firewall (NGFW), it can be difficult to tell what makes each one different....
- Responding to New SSL Cybersecurity Threat The featured Gartner research examines current strategies to address new SSL cybersecurity threats and vulnerabilities. All Security White Papers | Webcasts
Our new bimonthly Internet of Things newsletter helps you keep pace with the rapidly evolving technologies, trends and developments related to the IoT. Subscribe now and stay up to date!