Search /
Docfinder:
Advanced search  |  Help  |  Site map
RESEARCH CENTERS
SITE RESOURCES
Click for Layer 8! No, really, click NOW!
Networking for Small Business
Security /

Cisco launches IPS offensive

Related linksToday's breaking news
Send to a friendFeedback

By Ellen Messmer
Network World, 02/14/05

Cisco this week will announce its presence as a player in the intrusion-prevention system market with five appliances and software that adds IPS capabilities to Cisco switches, firewalls and routers.

The network-based IPS appliances, set for delivery next month, will range from a low-end 80M bit/sec offering to one that runs at a maximum 7G bit/sec, Cisco says. The ability to identify and block network attacks will work identically across the Cisco appliances, routers, switches and the PIX firewall. The new lineup, which will be unveiled at the RSA Conference in San Francisco, will pose an obvious threat to a growing field of competitors that includes Internet Security Systems, McAfee, Symantec, 3Com's TippingPoint Technologies, Top Layer Networks and start-ups such as V-Secure Technologies.

Concern about computer worms and automated attacks is prompting IT managers to deploy IPSs both at the Internet perimeter and inside the corporate LAN, in spite of the danger of false positives that might cause IPSs to block legitimate traffic.

Cisco, which also announced the VPN 3000 Concentrator for combined SSL- or IPSec-based tunneling, calls the security products rollout its "adaptive threat defense," says Jayshree Ullal, senior vice president of Cisco's security technology group.

The design of the Cisco IPS will include the ability to generate a "risk rating of the event and asset value of the target" when an attack is identified and blocked, Ullal says. Like other IPS appliances, the Cisco line will be able to work in a passive-detection mode like an intrusion-detection system.

Ullal says Cisco's IPS is intended to function well in VoIP networks without disrupting traffic. "The IPS is going to protect voice gateways from attack," she says.

Industry analysts say Cisco's push into IPS is a reaction to growing market demand for more proactive options than that of intrusion detection.

"So far, they've only had detection capability," says Paul Stamp, an analyst with Forrester Research. "But Cisco has a good reputation in detection, so IPS shouldn't be too hard for them."

RELATED LINKS


NWFusion offers more than 40 FREE technology-specific email newsletters in key network technology areas such as NSM, VPNs, Convergence, Security and more.
Click here to sign up!
New Event - WANs: Optimizing Your Network Now.
Hear from the experts about the innovations that are already starting to shake up the WAN world. Free Network World Technology Tour and Expo in Dallas, San Francisco, Washington DC, and New York.
Attend FREE
Your FREE Network World subscription will also include breaking news and information on wireless, storage, infrastructure, carriers and SPs, enterprise applications, videoconferencing, plus product reviews, technology insiders, management surveys and technology updates - GET IT NOW.
* HOME    * RESEARCH CENTERS     * NEWS     * EVENTS

Contact us | Terms of Service/Privacy | How to Advertise
Reprints and links | Partnerships | Subscribe to NW
About Network World, Inc.

Copyright, 1994-2006 Network World, Inc. All rights reserved.