Cisco Pushes Security to All Parts of the Network
With the new capabilities, Cisco networks can now automate and dynamically enforce security policies, according to officials. For endpoints that use Cisco's AnyConnect 4.1 VPN client, Cisco now is offering AnyConnect Feature Cisco AMP (Advanced Malware Protection) for Endpoints to continuously guard against advanced malware. In addition, at branch and campus offices, Cisco is bringing FirePower Services to its Integrated Services Routers (ISRs) that enables central management of next-generation intrusion prevention and AMP integrated in the network fabric. Cisco officials also are embedding various security technologies into the network infrastructure to enable businesses to more quickly identify users and devices associated with anomalies, threats and misuse of the network and applications. They said the move will make the network more of both a sensor and an enforcer. Cisco is bringing broader integration between its Identity Services Engine (ISE) and Lancope StealthWatch, enabling users to better identify threats. NetFlow on the Unified Computing System (UCS) hardware also will give businesses greater visibility into network traffic flow patterns and threat intelligence in the data center, officials said. The company also is offering its ISE through a hosted cloud service.Other features such as secure containers will offer future security services and applications, officials said.
In addition, for service providers, Cisco is rolling out the Firepower 9300 Integrated Security Platform that can scale according to business demands and capabilities that enable the vendor's new security solutions to integrate not only with its own architecture but also with third-party software-defined networking (SDN) and network-functions virtualization (NFV) solutions. Included in the orchestration and cloud capabilities are open APIs for integration with offerings from other vendors.