Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Analytics

Cisco Buys WLAN Security Smarts

Cisco returns to the security sector, buying software-based secure WLAN access specialist Meetinghouse

Cisco Systems Inc. (Nasdaq: CSCO) is buying software security firm Meetinghouse Data Communications Inc. for $43.7 million in a move that reflects the importance of secure network access via WLAN. (See Cisco to Buy Meetinghouse.)

The move marks the return of Cisco's roving acquisition eye to the network security sector after it snapped up three specialist companies in the middle of 2005. (See Cisco Nets NetSift for $30M, Cisco Buys Startup for $1.2M per Employee, and Cisco Chomps FineGround.)

It's also a reminder that fierce rival Juniper Networks Inc. (Nasdaq: JNPR) has been stepping on Cisco's enterprise toes. Analysts predicted Cisco could make a wireless LAN security acquisition following Juniper's purchase of Funk Software in December 2005. (See Cisco's Funk Breakdown.)

So what is Cisco getting for its cash, apart from 77 new staff? Well, Meetinghouse has developed "client-side 802.1X supplicant security software," according to Cisco's press release. To mere mortals, that means its software sits on devices such as desktop computers, laptops, and PDAs, and enables secure network access (fixed or WLAN connection) via 802.1x servers that provide port-based authentication. (See Review: 802.1X Authentication Servers and Aegis Authenticates Apple.)

In addition to being able to restrict network access to authorized users and devices, Meetinghouse's software also makes enterprise network managers' jobs easier, as they don't have to support multiple security systems that are dependent on the type and make of device.

Meetinghouse says its authentication software development kit (SDK) "ships with over 90% of the leading 802.11 semiconductor vendors," and its technology is integrated "in more than 75 percent of the LAN switch marketplace," enabling a high degree of interoperability. (See Meetinghouse, ISIL Secure WLAN, Meetinghouse Secures Atheros, NEC Likes Meetinghouse, and Notebook WiFi Clients.)

Cisco plans to integrate Meetinghouse into its Wireless Networking Business Unit (WNBU), and integrate its software into its existing security products. The vendor says the specialist's technology is "a natural extension to existing Cisco initiatives such as the Cisco Self Defending Network via Network Admission Control (NAC) and the Cisco Compatible Extensions (CCX) program."

The move will also strengthen Cisco's network-based applications pitch, dubbed Service Oriented Network Architecture (SONA). (See Cisco Everywhere: Meet SONA.)

Cisco expects the acquisition to close during its first fiscal quarter ending October 28. Cisco's share price closed Thursday at $19.63, up just 3 cents. The Meetinghouse news was announced after the markets closed.

— Ray Le Maistre, International News Editor, Light Reading

Don't be fooled by the weird cod-French surname: Ray's as British as corned beef and bad teeth, despite affecting a sheen of Continental sophistication by his constant references to fancy-dan "proper" coffee. He's even trained as a barista, for god's sake. Ray joined Light ... View Full Bio
 

Recommended Reading:

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
COVID-19: Latest Security News & Commentary
Dark Reading Staff 6/3/2020
Data Loss Spikes Under COVID-19 Lockdowns
Seth Rosenblatt, Contributing Writer,  5/28/2020
Abandoned Apps May Pose Security Risk to Mobile Devices
Robert Lemos, Contributing Writer,  5/29/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: This comment is waiting for review by our moderators.
Current Issue
How Cybersecurity Incident Response Programs Work (and Why Some Don't)
This Tech Digest takes a look at the vital role cybersecurity incident response (IR) plays in managing cyber-risk within organizations. Download the Tech Digest today to find out how well-planned IR programs can detect intrusions, contain breaches, and help an organization restore normal operations.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-13777
PUBLISHED: 2020-06-04
GnuTLS 3.6.x before 3.6.14 uses incorrect cryptography for encrypting a session ticket (a loss of confidentiality in TLS 1.2, and an authentication bypass in TLS 1.3). The earliest affected version is 3.6.4 (2018-09-24) because of an error in a 2018-09-18 commit. Until the first key rotation, the TL...
CVE-2020-10548
PUBLISHED: 2020-06-04
rConfig 3.9.4 and previous versions has unauthenticated devices.inc.php SQL injection. Because, by default, nodes' passwords are stored in cleartext, this vulnerability leads to lateral movement, granting an attacker access to monitored network devices.
CVE-2020-10549
PUBLISHED: 2020-06-04
rConfig 3.9.4 and previous versions has unauthenticated snippets.inc.php SQL injection. Because, by default, nodes' passwords are stored in cleartext, this vulnerability leads to lateral movement, granting an attacker access to monitored network devices.
CVE-2020-10546
PUBLISHED: 2020-06-04
rConfig 3.9.4 and previous versions has unauthenticated compliancepolicies.inc.php SQL injection. Because, by default, nodes' passwords are stored in cleartext, this vulnerability leads to lateral movement, granting an attacker access to monitored network devices.
CVE-2020-10547
PUBLISHED: 2020-06-04
rConfig 3.9.4 and previous versions has unauthenticated compliancepolicyelements.inc.php SQL injection. Because, by default, nodes' passwords are stored in cleartext, this vulnerability leads to lateral movement, granting an attacker access to monitored network devices.