Cisco Blogs


Cisco Blog > Data Center

Summary : Sourcefire in our Data Center by Cisco Chief Security Officer

 

Sourcefire

 

 

 

 

 

Last October , Cisco confirmed that Sourcefire was now part of our family of security products and solutions .

“With this acquisition, we take a significant and exciting step in our journey to define the future of security. As one company, we offer an unbeatable combination that will greatly accelerate our mission of delivering a new, threat-centric security model. Through the addition of Sourcefire’s competitive talent and technologies, I see vast opportunities to expand Cisco’s global security footprint in both new and emerging markets, broaden our solution sets and deepen our customer relationships “

Chris Young, Cisco Senior Vice President Security Group
in his blog “Delivers Threat-Centric Security Model “

“Beyond the technology, one of the things that is important to me is that Cisco and Sourcefire both share key values that transcend our company names, HQ locations and number of employees. Much like Sourcefire’s Firemen Principles, you can be confident that these values will continue as one team at Cisco.”

Martin Roesch, Sourcefire founder and CTO and now VP and Chief Architect of Cisco Security Group
in his blog ONE Team 

These days , John Stewart , Senior Vice President, Cisco Chief Security Officer , announced that we completed the  deployment of Sourcefire at Cisco . John Stewart oversees at Cisco the Threat Response, Intelligence and Development ( TRIAD ) organization .

The implementation is already giving us insights into our data center that we never had before

To know  more about this deployment and John’s first impressions check his blog
 The First Inline Production Deployment at Cisco 

 

The Cisco security architecture helps data center networking teams take advantage of security capabilities built into the underlying data center fabric, to accelerate safe data center innovation. There are three important security measures that every IT organization should follow to securely support data center innovation. 
To learn more, download the Cisco white paper “Three Must-Have Security Measures that Accelerate Data Center Innovation.”

Tell us what do you think of the acquisition of Sourcefire by Cisco .

 

Tags: , , , , , , , ,

The Internet of Everything, Including Malware

We are witnessing the growth of the Internet of Everything (IoE), the network of embedded physical objects accessed through the Internet, and it’s connecting new devices to the Internet which may not traditionally have been there before. Unfortunately, some of these devices may be deployed with a security posture that may need improvement.

Naturally when we saw a few posts about multi-architecture malware focused on the “Internet of Things”, we decided to take a look. The issue being exploited in those posts is CVE-2012-1823, which has both an existing Cisco IPS signature as well as some for Snort. It turns out this vulnerability is actually quite heavily exploited by many different worms, and it took quite a bit of effort to exclude all of the alerts generated by other pieces of malware in Cisco IPS network participation. Due to the vulnerability-specific nature of the Cisco IPS signature, the same signature covers this issue as well as any others that use this technique; just one signature provides protection against all attempts to exploit this vulnerability.  As you can see in the graph below this is a heavily exploited vulnerability. Note that these events are any attack attempting to exploit this issue, not necessarily just the Zollard worm.

The graph below is derived from both Cisco IPS and Sourcefire IPS customers. The Cisco data is from customers who have ‘opted-in’ to network participation. This service is not on by default. The Sourcefire data below is derived from their SPARK network of test sensors. This graph is showing the percent increase of alert volume from the normal for each dataset at the specified time.

zollard_cisco_sf

Read More »

Tags: , , , , , , ,

Sourcefire in Our Data Center – The First Inline Production Deployment at Cisco

In October, we were delighted to announce the completion of our acquisition of Sourcefire. With Sourcefire on board, Cisco provides one of the industry’s most comprehensive advanced threat protection portfolios, as well as a broad set of enforcement and remediation options that are integrated, pervasive, continuous, and open.

Within three weeks of the acquisition closing, we completed the first deployment into a highly secure data center and we are quite impressed with the results, to say the least! Within the first hour, we began seeing some interesting things from our network. The implementation was already giving us insights into our data center that we never had before!

Read More »

Tags: , , , , ,

Cisco Partner Weekly Rewind – October 11, 2013

Partner-Weekly-Rewind-v2Every Friday, we’ll highlight the most important Cisco partner news and stories of the week, as well as point you to important, Cisco-related partner content you may have missed along the way. Here’s what you might have missed this week:

Off the Top

Cisco completed its acquisition of Sourcefire this week. This move brings Sourcefire’s competitive technology and talent into the Cisco family, but what does that mean to partners?

Ken Trombetta took some time this week to offer his thoughts on the Sourcefire acquisition’s effect on channel partners. He also affirmed Cisco’s commitment to making the integration as seamless as possible for Cisco Channel Partners.

Be sure to check out Ken’s blog and give us your thoughts on the Sourcefire acquisition. Read More »

Tags: , , , ,

Cisco Closes Acquisition of Sourcefire; What Does that Mean to You?

Mobility, cloud and the Internet of Everything (IoE) continue to change IT security making point product solutions insufficient. The old model of having disparate products securing isolated areas simply won’t protect against the dynamic threats of today’s world. In the ever-growing world of the Internet of Everything (IoE) the number of attack vectors will only increase.  Today’s security solutions require a continuous approach that is much more automatic when handling security threats before, during and after an attack.

The good news for our partners is that the acquisition of Sourcefire is complete. With Sourcefire part of the Cisco family, we will provide partners with a broad portfolio of integrated solutions that deliver unmatched visibility and continuous advanced threat protection across the entire attack continuum, and partners can:

  • Work with one vendor to offer a wide range of industry leading security offerings;
  • Become or remain more competitive in the security space; and
  • Use the support of Cisco to build your security business Read More »

Tags: , ,