Cisco is looking to aggressively incorporate its reputation and monitoring gear into security gear, all under the direction the former CEO of Ironport, the company Cisco bought for its reputation technology.

Scott Weiss, recently promoted to vice president of Cisco's security technology business unit, says reputation could improve the effectiveness of classic security gear starting as soon as year-end.

As head of the security technology unit, Weiss oversees all Cisco firewalls, VPNs, intrusion protection/detection system gear,  Security Manager software, Monitoring, Analysis and Response system (MARS) as well as all the Ironport product line of antispam and Web-filtering products. (Compare firewall, VPN and IPS products.)

"I have a lot of early thoughts about synergies from the Ironport product line, and some of the threat prevention and interrogating of anonymous traffic that we've really built up an expertise with, and how to tie that better in with the firewall and [intrusion-protection system]," Weiss says. "These are things we have hypothesized about before but now we are really putting those product plans into action."

Weiss says he also wants to incorporate a behavioral monitoring feature of Ironport S-Series Web security appliances into Cisco firewalls. The monitoring could alert firewalls to block malicious traffic in and out of the network based on known exploits.

"A lot of silent threats that were not seen could be eliminated on a large-scale basis. That's an early charter we have for the organization," he says. "We've had some meetings of these groups and we've actually put some project plans in place. I think that you could see it as early as eight to 12 months as some of these cross-pollenization efforts."

The monitoring capabilities would help businesses by giving them better data about what traffic is moving across network boundaries. "You have to illuminate what information is leaving the corporation before folks are going to be willing to invest in [security] and some of the Ironport technology will allow us to do that," Weiss says.

He says the capability of Ironport gear to detail traffic in and out of networks and peform threat assessment could help boost the capabilities of IPS products. "IPS as a technology is not that dissimilar from what we do at Ironport, which is interrogating anonymous traffic, things that are coming into the network," Weiss says.

Whitepapers

• Gene Kim's Practical Steps to Mitigate Virtualization Security Risks
• Selecting Effective Virtual Directories
• A Modern Approach to On-Demand Email and Data Security
• Best Practices for HP Servers and HP Enterprise Virtual Array in a Microsoft Exchange
• Compliance, Protection, Recovery: A Layered Approach to Laptop Security
• Endpoint Security: Data Protection for IT, Freedom for Laptop Users

View more SECURITY whitepapers

Webcasts

• Key Considerations for a Successful 802.11n Deployment
• Solutions to the Toughest IT Challenges in Remote Offices
• Lowering the Cost of Email Archives
• High Availability for SQL Server 2005 Using Array-Based Replication and Host-Based Mirroring Technologies
• Technical Overview of Exchange Server 2007 with HP Servers and Storage
• Bringing Order and Security to your Mobile Workforce: Corporate Mobility Policy and Device Management On-Demand

View more SECURITY webcasts

Special Reports

• The Evolution of Network Security
• Taking Virtualization Up a Notch
• Learn how to Keep your Mobile Workforce Connected
• The self-managed network

View more SECURITY special reports