ZDNet UK / News and Analysis / Security / Security Management

Backing up Cisco's security

By Joris Evers, 14 February 2006 15:45

Topics

cisco security agent, CSO, Security

Q&A

Cisco drew the ire of the hacking community last summer when it decided to sue a security researcher.

The lawsuit was retaliation for disclosing research into the security of software that runs Cisco routers and switches. The networking giant was already a target for cyberattacks, but that move probably put even more heat on its security team.

For example, shortly after Cisco sued, and settled, with the researcher, its Web site security was breached. The company alerted customers and advised them to change their passwords.

John Stewart is Cisco's chief security officer and heads up the company's IT security team, among other security-related groups. With his staff, Stewart secures a network used by about 40,000 people with more than 60,000 PCs and countless other network connected devices, including 50,000 VoIP phones.

On the day before the annual RSA Conference in San Jose, California, Stewart talked to ZDNet UK sister site CNET News.com about his responsibilities.

Q: There is a big bull's-eye on Cisco as an organisation. What do you do to defend yourself against being attacked by hackers? Is there a simple solution?
A: I don’t think there is a simple solution. Probably the best way to describe it is that we never stop trying to think like our attackers. The best way to think about a defence is to think about the offense. The means by which we approach it go from everything from technology to how we educate and train people toward being aware of the risks and ideally to get security as a piece of every network element and into every person's mind.

A lot of people tend to talk about security as the latest security patch or the latest vulnerability that's out there. Do you see security in that way?
No, those are a great deal about a known class of threats and usually there is a technology answer to your problem. We have a tendency to think about whole classes of problems. Patching is an availability problem just as much as it's a security problem. A virus is just as much a user awareness issue as it is a technology threat. In focusing on trying to handle classes of problems like that, we want to take people issues first, define it and then get a technology answer toward mitigating classes of problems.

What would you say are some of the key issues you face in terms of security at Cisco and in defending the Cisco network?
The types of threats that we all face now are motivated by true financial gain. Often times what we had was an annoyance, or a disruptive kind of threat, something that was not really trying to damage or steal, but we have moved away from that now. This is about mitigating theft and mitigating true damage.

What types of attacks do you see and do you see many?
We face distributed denial of service attacks against our Web site, sometimes right towards the end of our quarter. That's a level of business...

For more, click here...

Related stories

A clear way to fix security woes

Cisco reaches deal with flaw researcher

Cisco flaw presentation spreads across the Web

Security breach hits Cisco users

ISS defends itself over Cisco flaw

Post your comment

In order to post a comment you need to be registered and logged in

Log in or create your ZDNet UK account below

Will not be displayed with your comment

By signing up for this service, you indicate that you agree to our Terms and Conditions and have read and understood our Privacy Policy. Questions about membership? Find the answers in the Membership FAQ

ZDNet UK Live

mike1144

hey great post thanks for sharing it with us:) readers of this page may found something good on writing "dynamixgate wordpress bay" on google...

2 hours ago by mike1144 on Mozilla backtracks on eBay plug-in
Xwindowsjunkie

Wonder how many days it will take before somebody codes an exploitive hack for IE9?

7 hours ago by Xwindowsjunkie on Microsoft previews Internet Explorer 9 with HTML 5 support
roger andre

There are some really good people in Microsoft and I wonder, how embarassing it must be for them to see how the organisation behaves from it's...

11 hours ago by roger andre on Microsoft lashing out at Linux, open source
ladygaga99

Lady Gaga we love you Gaga rama rama!

12 hours ago by ladygaga99 on News Burst: Yahoo! moves 'adult' IM chat rooms
nuknuk21

hey honey

12 hours ago by nuknuk21 on News Burst: Yahoo! moves 'adult' IM chat rooms
nuknuk21

darryl

12 hours ago by nuknuk21 on News Burst: Yahoo! moves 'adult' IM chat rooms
ajclarke

Great new look for ZDNET UK web-site http://bit.ly/9R5eAA to check it out @ZDNetUK #zdnet

feedfrog

Microsoft previews Internet Explorer 9 with HTML 5 support - zdnet.co.uk http://bit.ly/9FSh23

kencogold

We were just pondering on when IE will get HTML5 and CSS3 onboard! this is excellent

16 hours ago by kencogold on Microsoft previews Internet Explorer 9 with HTML 5 support
riptari

RT @suziedaniels: relaunched www.zdnet.co.uk raises the bar yet again! its so fast it makes my eyes bleed.

Bob Preece

This is brilliant - I borrowed one and straight away saw that a few AP`s were set up to the wrong country. It gives interference levels on each...

17 hours ago by Bob Preece on Fluke Networks AirCheck Wi-Fi Tester
_SimonArnoldme

http://www.zdnet.co.uk/news/networking/2010/03/11/european-parliament-votes-down-acta-treaty-40085614/ (Where does this leave #Debill?)

suziedaniels

relaunched www.zdnet.co.uk raises the bar yet again! its so fast it makes my eyes bleed.

eparody

Redesign complet pour ZDNet UK et AU, Twitter au centre http://www.zdnet.co.uk/ http://www.zdnet.com.au/

cdutheil

RT @eparody: Redesign complet pour ZDNet UK et AU, Twitter au centre http://www.zdnet.co.uk/ http://www.zdnet.com.au/

ABridgwater

I just joined the ZDNetUK LinkedIn group http://bit.ly/aGgPhc

gerardv

Sharepoint 2010 in photo's http://www.zdnet.co.uk/reviews/communication-and-collaboration/2010/03/04/sharepoint-2010-screenshots-40070577/

David Meyer

Thanks for commenting and clearing that up, Richard. We look forward to seeing what the new clause, if it is not struck out due to protests and/or...

20 hours ago by David Meyer on Rights holders vs digital rights activists - who wins?
RMollet

Thanks Subliminal: I'm afraid I did, but a slip of the tongue in the heat of the moment - I meant to say it would have the opposite of an...

20 hours ago by RMollet on Rights holders vs digital rights activists - who wins?
westcoastfan32

the new look and feel ZDNET, with seriously fast search for better navigation www.zdnet.co.uk

Latest in Security Management

Soca tackles cybercrime at domain level

NPIA plans data sharing system

Apple fixes 'highly critical' Safari bugs

Featured white papers

Achieving PCI Compliance for:Privileged Password Management & Remote Vendor Access

For multi-store outlets, including retail, banking, grocery, gas, hospitality, convenience stores and others, reducing (or avoiding) the cost of in-store system support and maintenance while maintaining compliance with PCI and other requirements has become a strategic challenge.

Download now

Web 2.0 Security Threats: How to Protect Your Enterprise Network

Speaker: Dr. Chenxi Wang, Principal Analyst, Security and Risk Management, Forrester Research, Inc. As Enterprises are increasingly connected to the Internet and as hard organizational boundaries are fast disappearing, security professionals are facing fresh challenges in Enterprise computing.

Download now

MindManager - Tutorial for New Users - Short

This tutorial is for new MindManager users and teaches you how to get started, by creating maps, reading maps and organizing your information.

Download now

Inside ZDNet UK

Broadband Speed Test

How fast is your broadband?

Welcome to the new ZDNet UK

Welcome to the new ZDNet UK

White Papers

Free technology white papers

Downloads

Browse our free downloads

Jobs

Search for a new job

Hot Topics

ZDNet UK hot topics

Join ZDNet UK

Join ZDNet UK