Cisco’s TrustSec is architecture with its implementation spread across client software, infrastructure (Catalyst & Nexus) and policy (Access Control System and NAC appliance). Cisco has expanded TrustSec to incorporate 802.1x clients allowing IT leaders to mix and match NAC and 802.1x endpoints. TrustSec organizes and simplifies authentication and policy schema allowing administrators to configure and maintain identity-based access to IT resources while identifying and applying policy based on a user roles in the organization.

The Web is increasingly being used as the threat vector of choice by hackers and cybercriminals to distribute malware and perpetuate identity theft, financial fraud, and corporate espionage. Is exploit sophistication and complexity evolving beyond traditional end-point anti-virus mitigation?

Sixty percent of virtual servers are less secure than the physical servers they place, the analyst firm Gartner said in new research Monday.

Analysts estimate 30% of today’s data center workloads are being virtualized and this number continues grow. As such, the need to provide the same intrusion protection system or IPS security for applications in virtualized and non-virtualized data centers is a must. In short applications on virtualized servers need the same protections as applications running on non-virtualized servers. To meet that end 3Com has launched its Secure Network Fabric and TippingPoint’s Secure Virtualization Framework.

Yesterday RSA announced new controls for virtual infrastructure security in cloud environments. Concerns regarding security and compliance have been primary factors preventing large enterprises from placing production workloads on shared virtual infrastructure in the cloud. Yesterday?s announcement and proof-of-concept didn't solve all of public cloud?s security woes, but it brought us closer to a practical solution....

The speaker lineup at this year's annual RSA Security Conference and Expo, underway this week in San Francisco, is packing some serious federal heat.

Bad pun, but true. I originally talked about this in this post. Actually, the encryption itself is straightforward. It’s the management of keys that has to be done correctly. Hard ? Yes. Impossible? No. Will market forces provide workable solutions? Yes. The dollars in play are too great.

by Chris Hoff

I saw a very interesting post on LinkedIn with the title PwC/TSB Debate: The cloud/thin computing will fundamentally change the nature of cyber security…

Is moving to virtualization and cloud computing making network security easier or harder? When some 2,100 top IT and security managers in 27 countries were asked, the response revealed a profound lack of consensus, showing how divided attitudes are within the enterprise.

Cisco, NetApp, and VMware Tuesday announced a project to improve the security of virtualization deployments, with a focus on isolating applications that use the same physical network, server, and storage resources in multi-tenant systems.