Data Centre


Cisco buffs Tetration for application protection

Builds out its subscription playbook

By Simon Sharwood


Cisco has updated its Tetration network monitoring software to tackle application security and multi-vendor policy enforcement.

Tetration's earlier iterations focussed on giving users visibility of network operations and performance in the data centre, while Cisco's Stealthwatch did the same for campus networks.

The company thinks those tools have network security nailed, and so has turned its attention to securing applications by letting Tetration inspect processes and set policies across the network.

The new version of Tetration can therefore peer into workloads and check that processes are only sending traffic to destinations approved by policy. The software will also examine all running processes, assess whether they're expected by policy or something unexpected.

In the latter case, Tetration can isolate an unexpected process and prevent it from reaching the network or other defensive actions. The company's calling this a kind of micro-segmentation for workloads.

The model informing policy-based decisions can update every minute, so if a new nasty is detected policy-driven isolation can be enforced before an attack gets out of hand.

As ever, Cisco is being rather ambitious because it is pitching Tetration as the tool with which to push policy to load balancers or firewalls, regardless of who made them. That's partly a recognition that organisations have diverse fleets of networking and security kit and party an attempt to demonstrate that the control plane is as valuable as a well-built firewall.

This all works across all manner of environments - VMs, bare metal, cloud or containers - further showing Cisco's ability to sit on top of whatever you run.

Like many other players, Cisco has also come to realise that organisations are going to use multiple clouds. Tetration's new tricks are therefore aimed at giving it a shot at managing all the resources that customers deploy, wherever they are deployed.

Cisco is not alone in hoping to provide that cross-cloud management layer. VMware is having a crack, as are upstarts like RightScale and even carriers.

Cisco's advantage is that these new capabilities will be available to existing Tetration users, without additional cost. See why we call the company The Borg? ®

Sign up to our NewsletterGet IT in your inbox daily

1 Comment

More from The Register

Windows 10 or Cisco Advanced Malware Protection: Pick one

Redmond warns that the malware tool doesn't play nice with the latest upgrade

Cisco and AWS hop into bed for steamy hybrid Kubernetes action

Mixing up on-premises and cloudy containers

Cisco snaps up Brit networking software bods Ensoft

From main customer to owner

Cisco patches yet another Data Centre Network Manager vuln

Good news is that it was just a proof of concept... we hope

Cisco sneaks hardcoded secret root backdoor into vid surveillance kit

Who watches the watchers? Anybody who has the login

Cisco loses focus over TelePresence blurry videoconferencing bug

You had one job, Precision 40

Cisco coughs up baker's dozen of vulns and other security nasties

Get patching – except for the ones where you, er, can't

New appliances from Cisco aim to make branch SD-WAN easier

Optimised Office 365 performance also on cards

Huawei's 5G security scrutiny pain could be Cisco's gain – analysts

Have enterprise networking portfolio, will travel

Cisco Webex meltdown caused by script that nuked its host VMs

Comms software flinger confesses to ultimate snafu, trigger still under investigation