Cisco secures the Internet of Everything with Security Everywhere
- 09 June, 2015 11:11
Cisco has launched a raft of new security offerings to help organisations capitalise on emerging business opportunities aroud the Internet of Everything, while minimising risk.
The new Security Everywhere offerings embed security throughout the extended network – from the datacentre out to endpoints, branch offices, and the cloud – for pervasive threat visibility and control.
By integrating security everywhere, enterprises and service providers gain the ability to deliver the threat-centric security requirements demanded by today’s dynamic threat landscape and capture emerging business opportunities created by the rise of the digital economy and the Internet of Everything (IoE), according to a company statement.
The IoE market is expected to generate $19 trillion in value to organisations over the next decade, and represents a $1.7 trillion opportunity to service providers (Cisco Consulting Services, 2013).
Additionally, according to the 2015 Cisco Visual Networking Index Forecast, the number of IP connected personal devices and M2M connections online will grow from 14 billion in 2014, to more than 24 billion by 2019.
However, cybercrime is simultaneously becoming increasingly sophisticated and industrialised such that the financial opportunity for cybercriminals is also rising.
It is valued at an estimated $450 billion to $1 trillion (Cybersecurity: Assessing Our Vulnerabilities and Developing an Effective Response, Hearing before the Committee on Commerce, Science, and Transportation, US Senate, March 19, 2009).
To combat the rising security threat, Cisco is adding more sensors to increase visibility; more control points to strengthen enforcement; and pervasive, advanced threat protection to reduce time-to-detection and time-to-response, limiting the impact of attacks.
It provides scalable threat protection covering the broadest range of attack vectors and throughout the entire attack continuum – before, during and after an attack.
The new solutions include Cisco AnyConnect, which features Cisco AMP for Endpoints.
Customers using the Cisco AnyConnect 4.1 VPN client now can deploy and significantly expand their threat protection to VPN-enabled endpoints to continuously and retrospectively guard against advanced malware.
FirePOWER Services solutions for Cisco Integrated Services Routers (ISR) provides centrally managed Next-Generation Intrusion Prevention System (NGIPS) and Advanced Malware Protection (AMP) at the branch office integrated in the network fabric, where dedicated security appliances may not be feasible.
It has also embedded multiple security technologies into the network infrastructure to provide broad threat visibility to rapidly identify users and devices associated with anomalies, threats and misuse of networks and applications.
New capabilities include a broader integration between Identity Services Engine (ISE) and Lancope StealthWatch.
Enterprises can now go beyond just mapping IP addresses to identifying threat vectors based on ISEs context of who, what, where, when and how users and devices are connected and access network resources.
NetFlow on Cisco UCS extends Cisco’s network-as-a-sensor capabilities to the physical and virtual servers, giving customers greater visibility into network traffic flow patterns and threat intelligence information in the data centre.
It now also provides Hosted Identity Services for a secure, 24/7, Cloud-delivered service for the Cisco Identity Services Engine, a security policy management platform that unifies and automates secure network access control.
Further, the expanded advanced orchestration and Cloud capabilities enable Cisco’s new security solutions to easily integrate with the Cisco architecture and third-party SDN/NFV solutions, as well as Cisco’s Adaptive Security Appliance Virtual (ASAv) with Cisco’s Network Service Orchestrator (NSO) and Application-Centric Infrastructure (ACI).
These orchestration and Cloud capabilities also include open APIs for integration with orchestration, Operation Support Systems/Business Support Systems, and Cloud Security-as-a-Service solutions.
Cisco security business group senior vice president and general manager, David Goeckeler, said security had to be pervasively embedded across the entire network infrastructure.
"By integrating ‘Security Everywhere’ throughout the extended network and through Cloud-delivered services, Cisco is protecting a wider array of attack vectors," he said.
"This also provides enterprises and service providers with the confidence that they have the continuous and retrospective visibility and control to support new technologies and business opportunities in the Internet of Everything and the Digital Economy.”