On a typical day, we leave a vast trail of data in our wake. Our browsing histories, online preferences, shopping habits, work decisions, social interactions—all are rendered in binary code, prompting a complex interaction of requests, responses, affirmations, and denials.
And that’s just from our laptops and smartphones.
What about when the Internet of Everything — with its explosion in connectivity from 10 billion “things” today to 50 billion in 2020 — truly shifts into overdrive? At that point, our clothing, our houses, our cars, our lawns, and our refrigerators may be generating ever-larger torrents of data — all about us.
This upsurge in personal Big Data has big implications. Indeed, each person’s emerging digital persona will go a long way toward defining their place in the world. Furthermore, all of that data already has great intrinsic value to Internet giants, retailers, financial services companies, and many others. If we manage it right — in what I see as a burgeoning Marketplace of Me — some of that value may come right back to us.
Read More »
Tags: Big Data, Cisco, Cisco Consulting Services, innovation, Internet of Everything, IoE, IoE Value Index, IoT, privacy, security, value at stake
You’ve all heard the saying “think outside the box” when encouraging someone to be creative and come up with new ideas, new ways to do things, new ways to…..just about anything. Well, I’d like to take a small twist on the well-known saying and talk for a moment on how deploying outdoor Wi-Fi access points should be something you should be “thinking” about.
We all know that here in late 2013 almost everywhere you go, you can pull out your laptop, tablet, or smartphone and you will find Wi-Fi coverage, be it at your workplace, at a coffee shop, or in a retail store. Why is Wi-Fi coverage so pervasive in these areas? Because connecting to Wi-Fi access points and the data network behind them makes employees more productive, enables the coffee shop to be the new remote office (while selling more coffee and cakes), and provides the retail store the ability to gather analytics to better target offers for their customers.
Now let’s think about expanding this coverage to outdoors….outside the buildings. The same holds true. Providing Wi-Fi access in the surrounding outdoor locations frees up employees to take their laptops outside and enjoy a nice, sunny day while still being “online” for secure corporate email and business tools. It allows the employee to connect to that important WebEx meeting he is running late for as he pulls into the parking lot. It allows the retail store to engage with customers thru Cisco’s Connected Mobile Experiences (CMX) earlier and push offers to them as they walk in from the parking lot, perhaps pulling customers headed to nearby stores who might otherwise not have stopped in.
Aironet 1530 Series Outdoor Wireless Access Points: Click to see comparison table
Read More »
Tags: access point, Aironet, building, byod, corporate email, coverage, location, network, outdoor, parking lot, secure, security, wi-fi, wifi, wireless, wlan
Securing the Critical Internet Infrastructure is an ongoing challenge for operators that require collaboration across administrative boundaries. A lot of attention has been given in recent years to securing the Domain Name System through a technology called DNSSEC. However, in the last couple of years, the attention has shifted to the security of the Internet routing system and the best practices adopted by network operators around the globe in this area. The main questions these efforts are trying to answer are: is your network authorised to use resources such as IP addresses? Do my packets travel through the advertised path or are diverted on their way? These problem statements may sound too technical for the audience but in reality they can quickly be converted in real business impact. Unauthorised claiming of network resources are proven to cause downtime not only for one web server but to complete networks. Particularly, imagine a phishing attack where the IP address, the domain name and the TLS certificate are legitimate but you just interacting with the wrong network. The hijack of IP addresses is normally due to bad operational practices (basically miss-configurations that leak to the global Internet) but it is also suspicious of playing a role in SPAM and other sensitive areas in security.
The global inter-domain routing infrastructure depends on Read More »
Tags: critical internet infrastructure, infrastructure, security, Service Provider
Security intelligence, threat intelligence, cyber threat intelligence, or “intel” for short is a popular topic these days in the Infosec world. It seems everyone has a feed of “bad” IP addresses and hostnames they want to sell you, or share. This is an encouraging trend in that it indicates the security industry is attempting to work together to defend against known and upcoming threats. Many services like Team Cymru, ShadowServer, ThreatExpert, Clean MX, and Malware Domain List offer lists of known command and control servers, dangerous URIs, or lists of hosts in your ASN that have been checking-in with known malicious hosts. This is essentially outsourced or assisted incident detection. You can leverage these feeds to let you know what problems you already have on your network, and to prepare for future incidents. This can be very helpful, especially for organizations with no computer security incident response teams (CSIRT) or an under-resourced security or IT operations group.
There are also commercial feeds which range anywhere from basic notifications to full-blown managed security solution. Government agencies and industry specific organizations also provide feeds targeted towards specific actors and threats. Many security information and event management systems (SIEMs) offer built-in feed subscriptions available only to their platform. The field of threat intelligence services is an ever-growing one, offering options from open source and free, to commercial and classified. Full disclosure: Cisco is also in the threat intelligence business
However the intent of this article is not to convince you that one feed is better than another, or to help you select the right feed for your organization. There are too many factors to consider, and the primary intention of this post is to make you ask yourself, “I have a threat intelligence feed, now what?” Read More »
Tags: cisco sio, CSIRT, csirt-playbook, cybersecurity, incident response, infosec, operational security, security, security intel
In October, we were delighted to announce the completion of our acquisition of Sourcefire. With Sourcefire on board, Cisco provides one of the industry’s most comprehensive advanced threat protection portfolios, as well as a broad set of enforcement and remediation options that are integrated, pervasive, continuous, and open.
Within three weeks of the acquisition closing, we completed the first deployment into a highly secure data center and we are quite impressed with the results, to say the least! Within the first hour, we began seeing some interesting things from our network. The implementation was already giving us insights into our data center that we never had before!
Read More »
Tags: data center, data correlation, network visibility, security, Sourcefire, threat protection