Skip Links

Application Awareness goes open source: Snort OpenAppID

Discover and control 1400+ applications on your network for free
Submitted by jheary on Sat, 03/15/14 - 1:17pm.

Cisco Sourcefire recently announced that their Snort open source IDS/IPS 2.9.7 will now support free application visibility and control, called OpenAppID.  It will be fully integrated into the current Snort framework and offers a new application preprocessor and keyword 'appid' that can be used in any Snort rule.  OpenAppID will launch with detection for over 1400+ applications, providing Snort admins with much needed awareness of the applications on their networks.  The Snort application information can also be sent to 3rd party analytics or SIEM tools.  

Read more

Breach! Defending Point of Sale Networks and Systems

Exploring what Cisco Security Solutions are most effective at defending PoS
Submitted by jheary on Wed, 03/05/14 - 7:26pm.

Given the Point of Sale (PoS) attacks in the news lately I'm sure many of you are thinking about, or acting on, architecting better defenses.  I recently worked with a team at Cisco to perform this same analysis on how to properly defend point-of-sale networks from attack.  The attack scenarios we used were modeled after the recent breaches, blackpos and other PoS malware attacks.

Read more

Mobile Device Management Spotlight: SAP Afaria

SAP President talks about MDM trends and their Afaria solution for managing iPhones, iPads and Android devices.
Submitted by jheary on Wed, 04/03/13 - 1:07pm.

Welcome to the Seventh installment of the MDM spotlight series.

There is little doubt that smart mobile devices are a boon for individual productivity, but corporate IT groups are scrambling to accommodate them on their networks. Accordingly, there has been an explosion of interest and adoption of Mobile Device Management (MDM) solutions. One of the top-tier players in this space is Afaria. Afaria sits in the Gartner MDM Leader MQ and boasts the most widely deployed MDM solution in the world, according to IDC market share data.

Read more

Mobile Device Management Spotlight: Fiberlink MaaS360

A spotlight on MDM provider Fiberlink.
Submitted by jheary on Sun, 12/30/12 - 6:04pm.

Welcome to the Sixth installment of the MDM spotlight series.

Read more

Mobile Device Management Spotlight: SOTI MobiControl

SOTI CEO talks about MDM trends and their solution to managing iPhones, iPads and Android devices
Submitted by jheary on Sun, 11/25/12 - 2:16pm.

Welcome to the fifth installment of the MDM spotlight series.

There is little doubt that smart mobile devices are a boon for individual productivity, but corporate IT groups are scrambling to accommodate them on their networks. Accordingly, there has been an explosion of interest in Mobile Device Management (MDM) solutions. One of the top-tier players in this space is SOTI.  They have over 10,000 customers using their MobiControl MDM software, including a healthy dose of fortune 500 companies.

Read more

Mobile Device Management Spotlight: Zenprise

Zenprise CEO talks about MDM trends and their solution to managing iPhones, iPads and Android devices.
Submitted by jheary on Wed, 10/10/12 - 11:32pm.

Welcome to the fourth installment of the MDM spotlight series.

There is little doubt that smart mobile devices are a boon for individual productivity, but corporate IT groups are scrambling to accommodate them on their networks. Accordingly, there has been an explosion of interest in Mobile Device Management (MDM) solutions. This spotlight focuses on Zenprise, a well-established MDM player with high-profile customers such as Sony, Delta and ConocoPhillips.  Zenprise holds a spot in the Gartner MDM Leaders Magic quadrant and is viewed as an MDM innovator by Forrester.

Read more

Cisco releases major update to its security management product

Cisco Security Manager 4.3
Submitted by jheary on Mon, 10/01/12 - 1:19pm.

Cisco just recently introduced an updated version of its security management tool CSM.  The new release brings with it some nice new features and functionality to the tool.  If you haven't heard of Cisco Security Manager (CSM) before, in a nutshell it is Cisco's consolidated GUI for management, monitoring, reporting and troubleshooting of its VPN, Firewall and IPS product lines. Cisco Security Manager, with version 4.3, now includes a suite of automated capabilities including health and performance monitoring, software image updates, auto-conflict resolution, and ticketing in

Read more

Mobile Device Management Spotlight: Absolute Software

AbsoluteSoftware talks about MDM trends and their solution to managing iPhones, iPads and Android devices
Submitted by jheary on Sat, 04/21/12 - 11:55pm.

Welcome to the third installment of the MDM spotlight series.

There is little doubt that smart mobile devices are a boon for individual productivity, but corporate IT groups are scrambling to accommodate them on their networks.  Accordingly, there has been an explosion of interest in Mobile Device Management (MDM) solutions.  This spotlight focuses on AbsoluteSoftware who is best known for their LOJACK for laptops software.  AbsoluteSoftware is not included in the Gartner MDM MQ.

Read more

Mobile Device Management Spotlight: MobileIron

MobileIron CEO talks about MDM trends and MobileIron's solution to managing iPhones, iPads and Android devices
Submitted by jheary on Tue, 03/13/12 - 5:32pm.

Welcome to the second installment of the MDM spotlight series.

There is little doubt that smart mobile devices are a boon for individual productivity, but corporate IT groups are scrambling to accommodate them on their networks.  Accordingly, there has been an explosion of interest in Mobile Device Management (MDM) solutions.  This spotlight focuses on MobileIron.  A top tier players in the MDM space.  MobileIron sits in the Gartner MDM Leader MQ.

Read more

Cisco ASDM GUI tips and tricks for managing your Cisco ASA

A look at some of the ASA ASDM features that will make your life a bit easier
Submitted by jheary on Tue, 01/24/12 - 8:44pm.

Cisco's Adaptive Security Device Manager (ASDM) is the GUI tool used to manage the Cisco ASA security appliances.  In this blog I'll reveal to you some of my favorite tips, tricks and secrets found inside ASDM.  If you haven't dealt with it before, ASDM is a free configuration, monitoring and troubleshooting management tool that comes with the ASA.  In a nutshell, ASDM will manage all the features of the ASA appliance including FW, IPS and VPN.  Unlike its big brother Cisco Security Manager (CSM), ASDM is made to configure a standalone ASA one at a time.  CSM is the

Read more

Mobile Device Management Spotlight: AirWatch

AirWatch CEO talks about MDM trends and AirWatch's solution to managing iPhones, iPads and Android devices
Submitted by jheary on Wed, 01/11/12 - 6:42pm.

There is little doubt that smart mobile devices are a boon for individual productivity, but corporate IT groups are scrambling to accommodate them on their networks.  Accordingly, there has been an explosion of interest in Mobile Device Management (MDM) solutions.  One of the top tier players in this space is AirWatch.  AirWatch sits in the Gartner Leaders MQ  and was named a w

Read more

Cisco releases Application Visibility and Control on Routers

ASR1000 provides 10Gig Layer 7 AVC for hundreds of applications
Submitted by jheary on Wed, 11/30/11 - 11:24pm.

Layer 7 application visibility and control (AVC) seems like the hottest buzz in the industry right now.  Cisco has had web AVC in its Ironport Web Security appliances but just announced it on its routers for all protocols.  Cisco ISR G2 and ASR 1000 routers will now have the ability to detect applications and use QoS MQC to control them.  Some examples of control mechanisms include bandwidth control, class-based marking, traffic shaping and policing, drop, weighted fair queuing and low latency queuing.  The Cisco AVC engine recognizes and classifies a wide variety of pro

Read more

Cisco Hires New Security SVP from VMWare and formerly RSA Security

Chris Young will be going to Cisco as its new Security Group Leader
Submitted by jheary on Tue, 11/01/11 - 12:30pm.

Cisco just announced it will be hiring Chris Young to head up its security group. This is the first time Cisco will have an SVP leading its security business. Chris will be reporting directly to Mrs. Warrior (CTO).

Read more

Cisco ASA Upgrade Adds Identity Firewalling

User and group based policies
Submitted by jheary on Thu, 10/27/11 - 3:01pm.

Identity aware firewalling seems to be all the rage right now. Having the ability to make firewall policy decisions based on user and group information from Active Directory can have enormous benefits if used properly. The Cisco ASA recently acquired the identity aware firewalling ability with the release of 8.4.2 code. It works with Microsoft Active Directory, cut-through proxy and VPN authentications today for user/group to flow matching. This new feature allows you to write access control policies that take a source username or group membership as match criteria.

Read more

I cannot sleep at night because I just got back from Black Hat

You would think security is improving but Black Hat speakers always prove otherwise
Submitted by jheary on Fri, 08/12/11 - 1:25am.

I've attended the Black Hat Security conference in Las Vegas for many, many years now. It is by far the best security event each year and this year was no exception. Each year seems to go something like this for me:

Read more

Samsung Androids get first SSLVPN client

Cisco Anyconnect for Samsung Android devices or any rooted Android device available
Submitted by jheary on Mon, 08/01/11 - 5:23pm.

Last month Cisco announced the release of it Anyconnect SSLVPN client for Android devices. The Android Anyconnect client is available for download on the Android Market. This client is based on the 2.4 version of the Anyconnect PC agent. As such it supports the following major features:

DTLS, certificate authentication and enrollment, two-factor authentication, Widgets, GUI Theming, auto-reconnect, 3G-wifi seamless roaming, full tunneling, split tunneling, and full statistics and debug logs on the device. See a screenshot of the client below.

Read more

Tutorial: Cisco Routers Add Web Security with Cisco ScanSafe

IOS adds in proxy features to forward web traffic to cloud web security offering
Submitted by jheary on Wed, 06/15/11 - 3:33pm.

Cisco launched this feature to the market last month at Interop. In a nutshell, it provides IOS routers with intelligent, identity aware, traffic redirection to the Cisco ScanSafe web security cloud offering. ScanSafe provides the following web security features as a cloud service:

Read more

  • URL Filtering
  • Scanlets analyze all elements of a web request including HTML, JavaScript, Flash and even obfuscated active scripts
  • Zero-day malware prevention
  • Protection against Phishing attacks
  • Granular Reporting with a multi-tenant design

PCI Council Releases Virtualization Guidance

PCI 2.0 DSS Virtualization Guidlines doc sheds light on compliance in the virtual world
Submitted by jheary on Tue, 06/14/11 - 8:06pm.

Today the PCI council released its PCI DSS VIRTUALIZATION GUIDELINES Information Supplement. This supplement does not add any new requirements to the standard but rather provides guidance on how to interpret the PCI DSS 2.0 standard in a virtual environment. It covers hypervisor, virtual machine, cloud computing, virtual networking and several other topics of interest. The supplement will tackle these areas:

 Explanation of the classes of virtualization including virtualized operating systems, hardware/platforms and networks

Read more

PCI Board of Advisors Election Results Released

Many new companies win election
Submitted by jheary on Sat, 05/21/11 - 5:47pm.

Read more

Gartner releases first MDM Magic Quadrant Report

Mobile Device Management (MDM) Solutions Aplenty. Here are the Leaders. A good MDM can secure your iPhones, iPads and Android devices
Submitted by jheary on Sat, 04/30/11 - 11:26pm.

Mobile Device Management (MDM) is all the rage right now in corporate IT circles. Everyone it seems is rushing to find the perfect MDM that balances security, functionality and ease of use. IT is scrambling to figure out how to best allow and control both corporate and personal mobile devices like iPhones and iPads. MDM is one of the few tools that can provide IT some control over these things. Neither Apple or Google have released their own MDM solution yet (like blackberry has) so several companies are starting to enter into the young MDM marketplace.

Read more