{"id":50451,"date":"2023-02-07T19:20:00","date_gmt":"2023-02-07T19:20:00","guid":{"rendered":"https:\/\/www.networkworld.com\/article\/3687139\/cisco-security-upgrades-strengthen-access-control-risk-analysis.html#tk.rss_security"},"modified":"2023-02-07T19:20:00","modified_gmt":"2023-02-07T19:20:00","slug":"cisco-security-upgrades-strengthen-access-control-risk-analysis","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/cisco-security-upgrades-strengthen-access-control-risk-analysis\/","title":{"rendered":"Cisco security upgrades strengthen access control, risk analysis"},"content":{"rendered":"
<\/div>\n

Cisco has strengthened some of its key security software packages with an eye toward better protecting distributed enterprise resources.<\/p>\n

Specifically, Cisco added more intelligence to its Duo access-protection software and introduced a new application called Business Risk Observability that can help enterprises measure the impact of security risks on their core applications. The company also enhanced its SASE<\/a> offering by expanding its SD-WAN<\/a> integration options.<\/p>\n

Cisco Duo enhancements strengthen access control<\/h2>\n

The cloud-based Duo service helps protect organizations against cyber breaches by using adaptive multi-factor authentication (MFA) to verify the identity of users and the health of their devices before granting access to applications.<\/p>\n

Cisco paid $2.35 billion in 2018 for Duo<\/a> and has been enhancing and expanding its use across its product line. Most recently, Cisco rolled out Duo Passwordless Authentication<\/a> with support for biometric authentication, including Microsoft Windows and Apple Macs. Passwordless authentication is aimed at reducing the risk of phishing attacks and their ability to utilize stolen passwords as well as addressing MFA fatigue.<\/p>\n

With that in mind, the Duo service now also supports features called Remembered Devices and Wi-Fi Fingerprint that allow users to avoid repeated authentications as they move from application to application in trusted operations. Another new feature, called Verified Push, enables Duo to recognize behavior from known attack patterns and require the user to enter a code instead of just pushing a button to confirm.<\/p>\n

Using MFA fatigue as an attack vector has led to some high profile breaches, said Tom Gillis<\/a>, senior vice president and general manager of security at Cisco. \u201cAttackers have built an attack that will look like an MFA request on your phone, but it’s actually a way to get into the network,\u201d he said. \u201cSo rather than have users mindlessly clicking through MFA requests, we have added the ability to intelligently and selectively let customers set a security policy that reduces that possibility.\u201d<\/p>\n