Intel Forecasts a Rebound Driven by Data Centers & IoT
The company reported revenues of $13.5 billion in 2Q.
Siemplify Helps Set Up Security Playbooks
Siemplify says it can find breaches. The question is what to do next.
Security Startup GuardiCore Raises $20M
A case where deception is on your side.
Ethernet-over-VPN: What Could Possibly Go Wrong?
One of my readers sent me a link to SoftEther, a VPN solution that
[…] penetrates your network admin's troublesome firewall for overprotection. […] Any deep-packet inspection firewalls cannot detect SoftEther VPN's transport packets as a VPN tunnel, because SoftEther VPN uses Ethernet over HTTPS for camouflage.
What could possibly go wrong with such a great solution?
Read more ...Network Break 96: News From Cisco Live; A Security Debate
The latest Network Break delves into news from Cisco Live US, including new security products, a potential ACI/NSX roadmap, a call for network engineers to move away from the CLI and more! The post Network Break 96: News From Cisco Live; A Security Debate appeared first on Packet Pushers.
AT&T’s Threat Intellect Combines Security & SDN
The new service is a brew of machine learning, big data, and network policy.
Juniper Finds Another Security Flaw
It's not as bad as the Netscreen back door thing.
Bay Dynamics Raises $23M in Series B Funding
The risk analytics market is expected to grow exponentially by 2021.
Black Hat Attendees Worry about IoT Security — Just Not Right Now
Only 9 percent of respondents consider IoT security a concern this year.
OpenFlow and Firewalls Don’t Mix Well
In one of my ExpertExpress engagements the customer expressed the desire to manage their firewall with OpenFlow (using OpenDaylight) and I said, “That doesn’t make much sense”. Here’s why:
Obviously if you can't imagine your life without OpenDaylight, or if your yearly objectives include "deploying OpenDaylight-based SDN solution", you can use it as a REST-to-NETCONF translator assuming your firewall supports NETCONF.
Read more ...Docker Datacenter @ DockerCon 2016: Image security, Engine 1.12 and Burning Man…
Interested in learning more about our plans for Docker in the Enterprise and getting involved in an upcoming Docker Datacenter beta? Let’s take a deeper look. On the second day of DockerCon, the keynote used different situations to discuss enterprise use of Docker. Our CEO Ben Golub broke down several fallacies in IT, CTO Keith Fulton of ADP painted a delicious picture of microservices as chicken nuggets, and Lily and I… well, we averted a massive security disaster and got our costumes ready for Burning Man.
Aside from shiny sequined jackets (not my normal wardrobe, I promise) and Ben’s enthusiastic “business guy” cameo, we presented a prototype of the next version of Docker Datacenter, our commercial solution for running containers-as-a-service (CaaS) in an on-premises or public cloud enterprise environment. Docker Datacenter is an integrated CaaS platform to securely ship, orchestrate and manage Dockerized apps and system resources. The sneak peek during the keynote shows a prototype UI and features. Some of the things you saw may change as we get to launch but what’s important are the capabilities we are bringing to the enterprise platform.
In the keynote presentation we demonstrated these enterprise use cases:
- Deploying applications, performing rolling updates, Continue reading
Ironically, Datadog Suffers a Security Breach
Just when it was bragging about its Azure integration.
Cisco Shows It Can Build Security Products, Too
Acquisitions are nice, but Cisco wants some home cooking, too.
Cisco Debuts 3 New Branch Office Security Products
Combining security with network routers.
Docker Security presentation at Bangalore meetup
This link captures the slides on “Docker Security Overview as of release 1.12” that I presented at Docker Meetup, Bangalore on July 9, 2016.
Is David Goeckeler Overseeing 50% of Cisco Revenues?
Other thoughts in advance of Cisco Live.
Beware: The Shaky Foundation of the Internet of Things
IoT make this environment a hacker’s Candy Land.
Absorbing DDoS with Communities
Distributed Denial of Service attacks can damage your business—and they can be difficult to manage or counter. While there are a number of tools available to counter DDoS attacks, particularly in the commercial space, and there are a number of widely available DDoS protection services, sometimes it’s useful to know how to counter a DDoS on your own. One option is to absorb attacks across a broader set of inbound nodes. Let’s use the network below to illustrate (though often the scale needs to be quite a bit larger for this solution to be useful in the real world).
Assume, for the moment, that the attacker is injecting a DDoS stream from the black hat, sitting just behind AS65004. There are customers located in AS65001, 2, 3, 4, and 5. For whatever reason, the majority of the attacker’s traffic is coming in to site C, through AS65003. Normally this is a result of an anycast based service (such as active-active data centers, or a web based service, or a DNS service), combined with roughly geographical traffic patterns. Even a DDoS attack from a mid sized or large’ish botnet, or reflection off a set of DNS servers, can end up being Continue reading
Twistlock Raises $10M for Container Security
Containers are hot, but container security is still in its early stages.
Veriflow, Applying Formal Verification to Security, Lands $8.2M Series A
Yes, it's possible to check every possible data flow. Kind of.