tag:blogger.com,1999:blog-4088979.post1665350559209806788..comments2023-10-16T06:06:25.012-04:00Comments on TaoSecurity Blog: Thoughts on Cisco Self-Defending Network BookRichard Bejtlichhttp://www.blogger.com/profile/13512184196416665417noreply@blogger.comBlogger5125tag:blogger.com,1999:blog-4088979.post-54307731346833664522008-03-26T10:41:00.000-04:002008-03-26T10:41:00.000-04:00This comment has been removed by a blog administrator.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-4088979.post-83292207511250551872008-02-10T06:08:00.000-05:002008-02-10T06:08:00.000-05:00This comment has been removed by a blog administrator.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-4088979.post-32344461635906050132007-04-12T00:04:00.000-04:002007-04-12T00:04:00.000-04:00This comment has been removed by a blog administrator.Ayishahttps://www.blogger.com/profile/14790237594110917232noreply@blogger.comtag:blogger.com,1999:blog-4088979.post-26394589850803072052007-01-11T09:03:00.000-05:002007-01-11T09:03:00.000-05:00Richard,
While I don't entirely buy the hype on t...Richard,<br /><br />While I don't entirely buy the hype on the entire SDN concept, I have to say that CSA is one damn fine piece of kit.<br /><br />I've worked with Entercept and Desktop Protector, and none of them really come close to the granularity that CSA provides. Anyone with an intrusion analysis background should have a pretty easy time with the product.<br /><br />Due to the excellent reporting of CSA, it has made for a good product to lead into sweeping security changes on laptops or desktops. By putting the agents in test mode, you get to check if the systems are behaving as expected and within your defined policies. This allows you to shoehorn security into place before cleaning it up "properly" with things like group policy settings and software restriction.<br /><br />CSA also adds another layer of data to NSM -- system and process related data that can help in identifying and scoping attacks. Have you had much opportunity to work with it in this capacity?Brandon Franklinhttps://www.blogger.com/profile/09698372076913907365noreply@blogger.comtag:blogger.com,1999:blog-4088979.post-69837630395338419652007-01-10T17:31:00.000-05:002007-01-10T17:31:00.000-05:00Your comments about this solution being accepted b...Your comments about this solution being accepted by those who are late to the security game is accurate from what I have seen. Cisco sees health care as a huge market for this line of products, as health care has been historically lax with regards to IT Sec.Anonymousnoreply@blogger.com