back to article Cisco creates architecture to improve security and sell you new switches

Cisco has developed a product called Hypershield that it thinks represents a new way to do network security. The core element of Cisco's plan is the deployment of "enforcement points" – essentially teensy firewalls that can run on a server, or in data processing units (DPUs, aka SmartNICs) installed in servers or networking …

  1. Rich 2 Silver badge

    Snort

    “ Hypershield detects bad behavior and automagically reconfigures networks to snuff out threats”

    Sounds like what Snort has been doing fire years. I’m sure it’s worth the extra expense though

  2. A Non e-mouse Silver badge

    [Cisco's Gillis] thinks it will also be welcomed in industries like healthcare that can't easily update devices with security vulnerabilities – because they just don't mess with hardware that keeps people alive. Self-updating networks and mitigations that keep those machines safe is Cisco's alternative.

    So an industry that doesn't like to change its software often is going to be OK with a network that automagically filters traffic.

    Hmmm....

  3. Anonymous Coward
    Anonymous Coward

    "Hypershield detects bad behavior...."

    ....except for "bad behaviour" emanating from Fort Meade!!!!

    It's a connundrum.......anyone else would count ANYTHING coming out of Fort Meade as "bad behaviour"...............except the lapdogs at Cisco!!!

    Pass the sick bag, Alice!

  4. sanmigueelbeer
    Coat

    Self-updating networks -- What could possibly go wrong?

    Self-updating networks and mitigations that keep those machines safe is Cisco's alternative.

    I have no problem with this as long as Cisco can promise adequate QA/QC of their codes.

    1. Clausewitz4.0 Bronze badge
      Devil

      Re: Self-updating networks -- What could possibly go wrong?

      <sarcasm> We are all sure this will NOT create a new vector of threats to be remotely exploited without user interaction </sarcasm>

  5. Anonymous Coward
    Anonymous Coward

    A new way to do network security?

    Cisco has developed a product called Hypershield that it thinks represents a new way to do network security.

    Security doesn't reside in the network but in the end-point computers. While a malicious actor can hack a computer by feeding it a malformed parameter, such cures as the above are merely so much sticking plaster.

    1. Anonymous Coward
      Anonymous Coward

      Re: A new way to do network security?

      @AC

      Quote: "Security doesn't reside in the network but in the end-point computers."

      So......you have never wondered about routers REDIRECTING traffic?

      1. Anonymous Coward
        Anonymous Coward

        Re: A new way to do network security?

        > So......you have never wondered about routers REDIRECTING traffic?

        I would assume the traffic is being re-routed ;)

  6. nijam Silver badge

    Sounds like an array of small attack surfaces ingeniously linked together to create one big DOS attack. Or something.

  7. elaar

    Joy, another new networking technology that involves AI, cloud dashboards and bespoke licensing plans.

    AI defending itself from (probably mostly) AI-generated attacks.

  8. Bebu Silver badge
    Windows

    DPUs/SmartNICs

    They run Minix too?

    A remake of the Intel Management Engine(ME) fiasco?

    AST would be so pleased.(Not.)

    I don't know which would make me happier - shoving Cisco crap into my server's kernel (Fireeye's xagt and Crowdstrike falcon were bad enough) or messing with the networking hardware.

    I can see a perfectly benign update to existing production software could change network behaviour sufficiently for this stuff to pull the plug on the whole fleet. There is enough self updating (in place) software for this to be a real problem.

    "O frabjous day! Callooh! Callay!" I chortled in my joy!

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Other stories you might like