Cisco has launched a new version of its IPS Sensor, adding what it calls "reputation analysis" to augment the signature-based defence of the intrusion-prevention system.
The release of IPS Sensor v 7.0 means that the Cisco IPS is able to detect and block traffic based on an analysis of threat intelligence aggregated and correlated by Cisco through a worldwide array of 700,000 sensors, says Fred Kos, director of security solutions and marketing at Cisco. This information will be used for both automated response in security gear and written reports for guidance for managers.
He said much of that threat intelligence was coming from ISPs making the data available to Cisco through the sensors. "Until now, we've relied on attack signatures," says Kos, saying the use of threat data means a way to determine bad traffic based on information obtained quickly across the world.
Cisco also announced Adaptive Security Appliance v.8.2 as an upgrade that adds a botnet-filtering capability to Cisco's ASA 5500 line of multi-purpose security appliances so they can identify infected computers and block them from "calling home" to botnet master trying to control them.
This filtering capability will also be assisted with the threat intelligence gathered by Cisco's Security Intelligence Operations receiving information from over 700,000 sensors and 500 third-party feeds.
Cisco owns the online collaboration service Webex and the company has also announced an update to its Webex Collaboration Cloud service to extend the ability to attend web conferences via the iPhone and 3G browsers, plus Nokia, Blackberry, Samsung smart phones. The new Webex cloud also has an "attentiveness monitor" to observe whether someone attending a Webex Conference is actually doing something else on their computer.
In related news, Cisco also said in July it would make available the Webex Node for ASR 1000 Series, which is specialised software for the ASR 1000 edge router to optimize bandwidth, video and VoIP performance for organisations making use of Webex meetings internally via the Internet-based WebEx Collaboration Cloud.
"If you have a lot of people attending a meeting, it allows you to consolidate traffic rather than have 1,000 connections though the firewall," Kos points out about the Webex Node for the ASR 1000 Series. It will bring bandwidth and quality advantages, he says, "and you still have failover, plus more policy control."
Cisco is also set to publish its security-design and architecture, dubbed the SAFE Architecture, as a set of documents to describe ways to configure and use Cisco-based products securely. In addition, Cisco is now offering professional services for IT Governance, Risk Management and Compliance, a security assessment of business infrastructure.