& cplSiteName &

Cisco Plugs Encryption Hole in Network Security

Mitch Wagner
1/10/2018
50%
50%

Cisco on Wednesday introduced analytics services designed to solve a growing problem with network security – detecting threats that are hidden in encrypted traffic.

Concerns over privacy, compliance and security are driving users to encrypt more and more network traffic, Cisco Systems Inc. (Nasdaq: CSCO) notes. Some 80% of network traffic will be encrypted by next year, according to a Gartner estimate that Cisco cites. And yet encrypted traffic makes it easier for attackers to conceal threats -- next year, half of malware campaigns will use encryption, Cisco says.

"While encryption is the right trend for privacy and regulatory compliance, IT teams will face a massive influx of traffic that they cannot see without decryption technology. This makes encrypted malware one of the industry's biggest emerging threats," according to a post on the Cisco Blogs Wednesday morning.

Cisco believes it can break that Catch-22 by analyzing typical network traffic and flagging anomalies that might indicate a threat, without decrypting traffic. The company outlined that strategy in its big "network intuitive" launch in June. (See Cisco's 'Network Intuitive': A Risky Transition.)


Keep up with the latest enterprise cloud news and insights. Sign up for the weekly Enterprise Cloud News newsletter.


On Wednesday, the company is announcing availability of its Encrypted Traffic Analytics (ETA) (Editor's Note: Cute name) for the company's branch-office Integrated Services Router (ISR); the Aggregation Services Routers (ASR 1k) for enterprise edge networks and services providers; virtualized Integrated Services Virtual Router (ISRv), and Cloud Services Routers (CSR), for extending enterprise networks to clouds. ETA is also integrated with Cisco's Stealthwatch security platform.

ETA provides "security while maintaining privacy. You can have your cake and eat it too," Prashanth Shenoy, Cisco vice president of enterprise network marketing, tells Enterprise Cloud News. (Editor's Note: Mmmmm.... cake.)

ETA "extends state of the art security detection and visibility close to the user in the branch, where 80 percent of employees and customers are served," Harrell says.

These users are often underserved by security because of the difficulty of rolling out sophisticated sensors to hundreds or thousands of branch officers, Harrell says.

Also, the security technology can be rolled out easily with software upgrades to Cisco's customers, Harrell says.

ETA fits with Cisco's strategy to transition its strategy from selling networking products to software and services paid for on a recurring basis. (See Cisco: Enterprises Will 'Spend Differently'.)

Cisco needs the boost – revenue has declined eight consecutive quarters. (See Cisco's Q1 Beats Wall Street Expectations.)

Last week, security researchers disclosed details about two serious vulnerabilities, "Spectre" and "Meltdown," effecting billions of Intel, AMD and ARM chips manufactured since 1995, including servers, desktops and mobile devices. Cisco says most of its products are "closed systems that do not allow customers to run custom code on the device, and thus are not vulnerable. Cisco products that can be deployed as virtual machines or containers are vulnerable, and users should install patches to secure the underlying infrastructure, the company says. (See 'Spectre' & 'Meltdown' – What Cloud Users Need to Know.)

ETA would not protect against Spectre and Meltdown, which enable attackers to steal information from device memory, rather than the network. However, ETA should be able to detect attempts to exfiltrate that information over the network.

Related:

— Mitch Wagner Follow me on Twitter Visit my LinkedIn profile Visit my blog Follow me on Facebook Editor, Enterprise Cloud News

(6)  | 
Comment  | 
Print  | 
Newest First  |  Oldest First  |  Threaded View        ADD A COMMENT
Educational Resources
sponsor supplied content
Educational Resources Archive
More Blogs from Wagner’s Ring
SD-WAN is about more than saving money – it also provides application delivery, insights and reliability. Find out more in this podcast sponsored by Citrix.
Platform is designed to enable enterprises to build big data analytics apps that move easily between public and private clouds.
Buying Evident.io extends Palo Alto's portfolio with API-based security capabilities and compliance automation.
Google wants to win the hearts of enterprise IT for Chrome OS on the desktop, but it has a long way to go.
IBM Cloud gets a security and Kubernetes performance boost.
Featured Video
From The Founder
Light Reading founder Steve Saunders talks with VMware's Shekar Ayyar, who explains why cloud architectures are becoming more distributed, what that means for workloads, and why telcos can still be significant cloud services players.
Flash Poll
Upcoming Live Events
May 14-16, 2018, Austin Convention Center
May 14, 2018, Brazos Hall, Austin, Texas
September 24-26, 2018, Westin Westminster, Denver
October 9, 2018, The Westin Times Square, New York
October 23, 2018, Georgia World Congress Centre, Atlanta, GA
November 7-8, 2018, London, United Kingdom
November 8, 2018, The Montcalm by Marble Arch, London
November 15, 2018, The Westin Times Square, New York
December 4-6, 2018, Lisbon, Portugal
All Upcoming Live Events
Hot Topics
I'm Back for the Future of Communications
Phil Harvey, US News Editor, 4/20/2018
Verizon: Lack of Interoperability, Consistency Slows Automation
Carol Wilson, Editor-at-large, 4/18/2018
AT&T Exec Dishes That He's Not So Hot on Rival-Partner Comcast
Mari Silbey, Senior Editor, Cable/Video, 4/19/2018
Facebook Hearings Were the TIP of the Data Iceberg
Dan Jones, Mobile Editor, 4/20/2018
Pay-for-Play Is a Sticking Point in Congress
Mari Silbey, Senior Editor, Cable/Video, 4/18/2018
Live Digital Audio

A CSP's digital transformation involves so much more than technology. Crucial – and often most challenging – is the cultural transformation that goes along with it. As Sigma's Chief Technology Officer, Catherine Michel has extensive experience with technology as she leads the company's entire product portfolio and strategy. But she's also no stranger to merging technology and culture, having taken a company — Tribold — from inception to acquisition (by Sigma in 2013), and she continues to advise service providers on how to drive their own transformations. This impressive female leader and vocal advocate for other women in the industry will join Women in Comms for a live radio show to discuss all things digital transformation, including the cultural transformation that goes along with it.

Like Us on Facebook
Twitter Feed