The book has a ton of screen shots and is essentially a big marketing piece for Cisco's Self-Defending Network gear, which includes:
- Cisco Traffic Anomaly Detector for DDoS identification
- Cisco Guard for DDoS mitigation
- Adaptive Security Appliance for firewalling (including IPS)
- Incident Control System for malware containment with Trend Micro
- 802.1X for port-based security; note to Cisco: it's not "802.1x"
- Network Admission Control (NAC) with NAC Appliance or NAC Framework
- Cisco Security Agent (CSA) for host protection
- Cisco Security Manager
- Cisco Monitoring, Analysis and Response System (MARS) for alert management
Why do I mention this, especially with product listings? Well, I realized the Self-Defending Network (SDN) is a security integrator's dream. I'm working with a client who has sold essentially this entire setup to a customer, and they want me to help get the most value from the deployment. I'm also going to assist with incident response planning.
The point is a security integrator can pitch this entire SDN suite as a coherent, one-brand "solution," and cover pretty much all the bases. That's impressive and I'm interested in knowing what sort of traction Cisco is getting with this approach. My sense is that it will sell well to non-technology companies who are really late in the security game. Yes, there are many companies who have no real protection, even in 2007. I severely doubt the readers of this blog are in that category, but what are you seeing?