Awani Review

Complete News World

Cisco extends its firewalls with Secure Firewall 3105

Dated 11/22022, by Michael Cooney IDG NS (adapted from Jean Eliane), protection785 words

California-based hardware maker Cisco has launched a secure hybrid worker firewall and is adding data loss prevention and passwordless authentication to its security products.


Security is the focus this week at the Cisco Partner Summit (1Verse3 November), with the launch of the firewall and the addition of data loss prevention (DLP) and password-less authentication functions to its security products. In terms of the firewall, the OEM announced the 3105 Secure Firewall, which is specifically designed for hybrid workers and small branches. Available early next year, Secure Firewall 3105 (in 1U form factor) supports 10 Gbit/s throughput, 7 Gbit/s IPSec, and 3000 peer-to-peer VPN. This box is the new entry-level device in the Secure Firewall 3100 family, which includes the 3110, 3120, 3130 and the high-end 3140 models, which supports a transfer speed of 45 Gbit/s.

The 3100 family supports Internal Adaptive Security Appliance (ASA) or Firewall Protection Software (FTD) and can be deployed in firewall mode and dedicated Intrusion Prevention System (IPS) mode. The vendor said the firewalls integrate with Cisco IPS, Cloud Web Security, Identity Services Engine (ISE), and TrustSec. The OEM is now offering Lifecycle Pay for Secure Firewall, a fixed-term subscription plan from Cisco Capital, as a financial incentive to upgrade firewalls. The company also said that customers can get a 10% replacement discount by returning their firewall hardware and upgrading to the latest Cisco qualified firewall.

Enhances its DLP canopy

To help prevent DLP data loss, San Jos has upgraded Umbrella, a cloud-based security system that blocks existing and emerging threats on all ports and protocols. Umbrella blocks access to malicious domains, URLs, IP addresses, and files before a connection is established or a file is downloaded. Cisco has added policies and reporting capabilities to its system with out-of-band DLP and inline DLP in real-time to make it easier for security teams to track and manage. This out-of-band DLP feature will initially support Cisco WebEx, Google Drive, and Microsoft 365, said Jason Gallo, vice president of Global OEM Partners. We plan to add additional support for other applications soon. Policy and reporting capabilities are aligned between out-of-band DLP and inline DLP in real-time, which Gallo says is unique to Cisco products.

See also  Microsoft has released its Linux distro under the codename CBL-Mariner where CBL stands for Common Base Linux

The seller introduced Duo Passwordless authentication, with support for biometric authentication, including Windows Hello, Mac touch I, and others. Dave Lewis, Cisco’s global CISO consultant, said passwordless authentication reduces the risk of phishing attacks and their ability to use stolen passwords or, as we’ve seen recently, user fatigue from multi-factor authentication (MFA). He added that with cyber-attacks approaching end users, adopting low-friction authentication methods, alone to ensure that trusted users and devices have exclusive access to enterprise applications and resources, is a challenge, and a huge opportunity. According to the Cisco 2022 Duo Trusted Access Report, also released at the conference, Duo customers have enabled biometrics on 81% of mobile devices.

Multifactor authentication is a must

Here are some other results from 49 million devices, more than 490,000 unique apps, and nearly 1.1 billion monthly authentications across Duo’s customer base: Since April 2019; An increasing number of validations are attributed to cloud applications, with a 24% increase in the percentage of cloud applications in 2022; Remote access authentications peaked in 2020 but have since fallen below pre-Covid-19 levels; Less than 1% of companies implement explicit denial or allow policies based on geographic location, but 91% of companies block Russia or China, and 63% ban both.

Finally, there is a trend to require multi-factor authentication for all access, not just access to resources that have a physical impact on a business, as was the case a few years ago. Multi-factor authentication can reduce risks to all resources and simplify security operations.