Cisco teams with Trend Micro on security service
It hopes to cut down on the spread of worms and viruses
IDG News Service - Cisco Systems Inc. today is expected to announce a number of new security features for its networking products, including a security service it has developed with Trend Micro Inc. that's designed to cut down on the spread of worms and viruses.
The new service, called the Cisco Incident Control System (ICS), will help administrators set network security policies on Cisco hardware based on information provided by antivirus vendor Trend Micro, said Joel McFarland, a product manager at Cisco's security technology group.
Cisco had already partnered with Cupertino, Calif.-based Trend Micro to make its worm and virus signatures available via the Cisco Intrusion Prevention System (IPS), and the companies are working together on security enhancements for the Cisco ASA 5500 Series adaptive security appliance, McFarland said.
With the new ICS offering, customers will be able to block the spread of malicious software by using the service to distribute mitigation policies across Cisco networks. "This is really something that delivers an entirely new class of response time," McFarland said. "In a single choreographed move, I can force the enterprise to take a more protective posture."
ICS could save network administrators time by automating router and switch configuration, said Joel Conover, an analyst at Current Analysis Inc.
But while the service will help protect networks from known threats, like the recent Zotob family of worms, it won't do much to prevent so-called zero-day attacks, which are based on exploits that haven't yet been cataloged by antivirus companies such as Trend Micro, he said.
Administrators also will have to be careful with ICS to make sure that the rules and policies it implements don't break other applications running on the network, Conover said. "The question is, How do you check for the business impact of these rules?" he said. "You get this rule from Trend Micro. ... Do you apply it immediately?"
To make things less disruptive, ICS will have a rollback feature, which will allow administrators to uninstall the security policies should they cause important applications to fail, he said.
Cisco's other product enhancements include an updated version of the Cisco Security Monitoring, Analysis and Response System that can identify and respond to security threats in remote locations such as branch offices. The networking vendor also plans to release a new version of its Cisco IPS sometime this month and will release a new version of its Internetworking Operating System router operating system in November.
The Cisco ICS will be available next month, with prices starting at $9,200, Cisco said.
- Silicon Valley's 19 Coolest Places to Work
- Is Windows 8 Development Worth the Trouble?
- 8 Books Every IT Leader Should Read This Year
- 10 Hot Hadoop Startups to Watch
- Slideshow: 7 security mistakes people make with their mobile device
- iOS vs. Android: Which is more secure?
- 11 sure signs you've been hacked
- Neustar 2014 DDoS Attacks and Impact Report For the third consecutive year, Neustar surveyed hundreds of companies on distributed denial of service (DDoS) attacks. The survey reveals evidence that the...
- Acxiom Case Study This case study, which focuses on Acxiom, explores how the company was able to secure employee data, reduce migration costs and boost productivity...
- Windows® XP Migration: Protect and Secure Critical Data With the end of the Microsoft Windows XP operating system's lifecycle on April 8, 2014, businesses are faced with the decision to migrate...
- Enhancing Application Protection and Recovery with a Modern Approach to Snapshot Management This CommVault Business Value and Technology White Paper explains how Simpana IntelliSnap® Recovery Manager can make your application recovery fast and reliable.
- Live Webcast LIVE EVENT: 5/7, The End of Data Protection As We Know It. Introducing a Next Generation Data Protection Architecture. Traditional backup is going away, but where does this leave end-users?
- LIVE EVENT: 5/7, The End of Data Protection As We Know It. Introducing a Next Generation Data Protection Architecture. Traditional backup is going away, but where does this leave end-users?
- On-demand webinar: "Mobility Mayhem: Balancing BYOD with Enterprise Security" Check out this on-demand webinar to hear Sophos senior security expert John Shier deep dive into how BYOD impacts your enterprise security strategy... All Security White Papers | Webcasts