Cisco buffs Tetration for application protection

Builds out its subscription playbook

By Simon Sharwood, APAC Editor

Posted in Networks, 6th March 2018 03:58 GMT

Cisco has updated its Tetration network monitoring software to tackle application security and multi-vendor policy enforcement.

Tetration's earlier iterations focussed on giving users visibility of network operations and performance in the data centre, while Cisco's Stealthwatch did the same for campus networks.

The company thinks those tools have network security nailed, and so has turned its attention to securing applications by letting Tetration inspect processes and set policies across the network.

The new version of Tetration can therefore peer into workloads and check that processes are only sending traffic to destinations approved by policy. The software will also examine all running processes, assess whether they're expected by policy or something unexpected.

In the latter case, Tetration can isolate an unexpected process and prevent it from reaching the network or other defensive actions. The company's calling this a kind of micro-segmentation for workloads.

The model informing policy-based decisions can update every minute, so if a new nasty is detected policy-driven isolation can be enforced before an attack gets out of hand.

As ever, Cisco is being rather ambitious because it is pitching Tetration as the tool with which to push policy to load balancers or firewalls, regardless of who made them. That's partly a recognition that organisations have diverse fleets of networking and security kit and party an attempt to demonstrate that the control plane is as valuable as a well-built firewall.

This all works across all manner of environments - VMs, bare metal, cloud or containers - further showing Cisco's ability to sit on top of whatever you run.

Like many other players, Cisco has also come to realise that organisations are going to use multiple clouds. Tetration's new tricks are therefore aimed at giving it a shot at managing all the resources that customers deploy, wherever they are deployed.

Cisco is not alone in hoping to provide that cross-cloud management layer. VMware is having a crack, as are upstarts like RightScale and even carriers.

Cisco's advantage is that these new capabilities will be available to existing Tetration users, without additional cost. See why we call the company The Borg? ®

Sign up to our NewsletterGet IT in your inbox daily

1 Comment

More from The Register

Fella faked Cisco, Microsoft gear death – then sold replacement kit for millions, say Feds

'Phony photos', legit serial numbers land chap in court

Cisco to trial direct online sales

Australia the 'vanguard', perhaps with new smallbiz products to make it sensible

Laggard Cisco stumbles over, puffing: 'HyperFlex now supports Hyper-V'

Version 3.0 scales up, shows some container love and promises validation

Sigh. Cisco security kit has Java deserialisation bug and a default password SNAFU

Two critical vulnerabilities among 20 patches

Judges dismisses majority of Cisco's 'insane' IP defence against Arista

Switch antitrust case rumbles on

Cisco to release patches for Meltdown, Spectre CPU vulns, just in case

Switchzilla is investigating a whole bunch of products

AMD lures Cisco's server CTO into Epyc new data center gig

Exclusive He's also a player on the Transaction Processing Performance Council

Cisco bulks up routers for carriers struggling with CDN traffic

IOS XR gets an SDN injection to help things out, too

Cisco mess from 2017 becomes tool for state-sponsored infrastructure attacks and defacements

Sigh. 160,000 un-patched boxen await p0wnage

Another week, another Cisco-security-kit-needs-a-patch story

Probing last week's ASA and Firepower flaws found another DDOS to deter