Cisco Blogs


Cisco Blog > Security

Trust and Transparency

In our increasingly interconnected world, the Internet of Everything is making trust a critical element of how people use network-connected devices to work, play, live, and learn. The relentless rise in information security breaches underscores the deep need for enterprises to trust that their systems, data, business partners, customers, and citizens are safe.” – John N. Stewart, SVP and Chief Security and Trust Officer at Cisco

Trust and security is more important than ever before throughout the industry. Why aren’t customers explicitly demanding it be in all their IT systems? Why aren’t they demanding software developed with processes and technologies that drive security into all aspects of IT systems they buy? Why aren’t they demanding supply chain security and strong data protection? In short, why aren’t they demanding IT vendors produce more robust and secure solutions? Read More »

Tags: , , ,

Meeting the demand for Cloud technology skills

What makes the cloud such an attractive option for enterprises? The cloud empowers IT to act as a broker of business critical IT services. It helps the organization become a more proactive player that can aggregate, integrate, and customize the delivery of cloud services to meet specific business needs. Instead of working in a technology vacuum or owning the entire IT value chain, IT can make build or buy decisions in the context of IT services sourcing recommendations. Meet critical business objectives

Businesses in every industry are rapidly embracing the cloud. They want the agility, security, and performance that cloud technology delivers. And they want the flexibility to deploy their choice of workloads securely to the cloud. This growing demand for cloud services is creating new opportunities for cloud providers and driving new job roles and responsibilities.

Read More »

Tags: , , , , , , , , ,

On-Demand Private Cloud: How to Cut CapEx, Free Up Resources, and Boost Business Agility

Today, enterprises need greater business agility and faster time-to-market for applications. That’s why, in many instances, they are building their own private clouds or adopting on-demand private cloud. Companies that are most suited to building their own private clouds are those that have deep engineering and IT leadership and need strong security and governance around applications and services.

Depending on the needs of the business and core competencies, other types of companies can benefit from a managed private cloud. For these companies, it’s not core to the business to be great at infrastructure, but it is crucial to be able to focus on the services offered on top of the infrastructure. These types of organizations may not have strict regulatory or data sovereignty requirements. Typically, they gain the most advantage from using managed private clouds.

Read More »

Tags: , , , , , , , ,

New Email Security Release Adds Graymail Protection, Web Interaction Tracking, AMP Threat Grid, and More

Each day more than 100 billion corporate email messages are exchanged1. Who doesn’t need to do a little housekeeping and eliminate unwanted emails? But you need to think twice before you click on “unsubscribe.”

As you likely read in the 2015 Cisco Annual Security Report, attackers are using applications users inherently trust or view as benign, like web browser add-ons, to distribute malware. One of the latest phishing techniques is graymail – directing the “unsubscribe” link at the bottom of a seemingly innocuous marketing email to a malware infested website. Many of us click on these links without a second thought. But instead of ridding ourselves of unwanted emails, we’re actually opening ourselves up to an attack.

This is just one example of how attackers continue to innovate, and Cisco does as well. Our new AsyncOS release for Cisco Email Security Appliance (Cisco ESA) demonstrates how Cisco empowers you with a threat-centric approach to security and more comprehensive management control.

Read More »

Tags: , ,

Understanding Logjam and Future-Proofing Your Infrastructure

On May 19th, 2015 a team of researchers (Henninger et. al) published a paper with the title “Imperfect Forward Secrecy: How Diffie-Hellman Fails in Practice”.

The paper can be divided in two sections: 1) discrete logs on a 512-bit Diffie-Hellman (DH) group, and 2) a new attack against the Transport Layer Security (TLS) protocol. We’ll review both sections.
Read More »

Tags: , ,