Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.


Cisco Packages Home Office Security

Cisco Virtual Office promises to ease installation, administration of secure telecommuter links

Cisco Systems today took a new whack at an old problem: securing the connection from workers' homes to the corporate network.

The Cisco Virtual Office (CVO) packages routing, switching, security, wireless, IP telephony, and policy control technology into a single bundle that can be deployed and managed uniformly, no matter how many employees a company has working from home.

"You get the phone, the router, and everything else you need to work from home, you plug it into your Ethernet port on your DSL or cable modem, and it's immediately like you never left the office," says Marie Hattar, vice president for networking and security solutions at Cisco. "Your work phone rings at home, so callers don't need to know you're not in the office. You have access to all of the same systems and applications that you have in the office."

Security administrators may be skeptical of the new package, having been promised "easy-to-administer" remote client security systems by many vendors over the years. But Cisco is convinced it's got something different this time -- and it's attempting to prove it by deploying the packages to more than 12,000 of its own employees.

Chuck Trent, vice president of IT at Cisco, oversaw the implementation of CVO at employees' homes in a wide variety of geographies. He says the security administration capabilities alone make the package worth considering.

"The integrated security audit, the 'security monitor,' and the [Cisco Security Manager]-based configuration's consistency and management reduce the security concerns of any enterprise tenfold, if applied properly," he said.

CVO offers something called “zero-touch” setup, which helps eliminate the security errors that end users make when they set up their own home systems, Cisco says. Automated, pre-configured setup allows companies to be certain that their security policies are being followed by home users, the company states.

But CVO doesn't require employees to "lock down" their machines or dedicate them only to corporate access, says Calvin Chai, senior manager of security solutions at Cisco. In fact, the system offers "split tunneling," so that the employee can use corporate connections for business communications and still allow others in the family to surf the Web -- without giving up his or her corporate system password.

At less than $700 per connection, the Cisco package is significantly more expensive than a standard VPN license, but it includes a variety of equipment -- including an IP phone -- that many employees don't have at home, Cisco says. One of the goals of the package is to make it possible for companies to deliver on new "green" policies that allow employees to save money and reduce pollution by working more frequently from home, Hattar says.

Have a comment on this story? Please click "Discuss" below. If you'd like to contact Dark Reading's editors directly, send us a message.

  • IOActive
  • MessageLabs Ltd.
  • StillSecure

    Tim Wilson is Editor in Chief and co-founder of Dark Reading.com, UBM Tech's online community for information security professionals. He is responsible for managing the site, assigning and editing content, and writing breaking news stories. Wilson has been recognized as one ... View Full Bio

    Comment  | 
    Print  | 
    More Insights
  • Comments
    Newest First  |  Oldest First  |  Threaded View
    Register for Dark Reading Newsletters
    White Papers
    Cartoon Contest
    Current Issue
    2020: The Year in Security
    Download this Tech Digest for a look at the biggest security stories that - so far - have shaped a very strange and stressful year.
    Flash Poll
    Assessing Cybersecurity Risk in Today's Enterprises
    Assessing Cybersecurity Risk in Today's Enterprises
    COVID-19 has created a new IT paradigm in the enterprise -- and a new level of cybersecurity risk. This report offers a look at how enterprises are assessing and managing cyber-risk under the new normal.
    Twitter Feed
    Dark Reading - Bug Report
    Bug Report
    Enterprise Vulnerabilities
    From DHS/US-CERT's National Vulnerability Database
    PUBLISHED: 2021-01-22
    Pepperl+Fuchs Comtrol IO-Link Master in Version 1.5.48 and below is prone to an authenticated reflected POST Cross-Site Scripting
    PUBLISHED: 2021-01-22
    Pepperl+Fuchs Comtrol IO-Link Master in Version 1.5.48 and below is prone to an authenticated blind OS Command Injection.
    PUBLISHED: 2021-01-22
    Pepperl+Fuchs Comtrol IO-Link Master in Version 1.5.48 and below is prone to a NULL Pointer Dereference that leads to a DoS in discoveryd
    PUBLISHED: 2021-01-22
    M&M Software fdtCONTAINER Component in versions below 3.5.20304.x and between 3.6 and 3.6.20304.x is vulnerable to deserialization of untrusted data in its project storage.
    PUBLISHED: 2021-01-22
    Pepperl+Fuchs Comtrol IO-Link Master in Version 1.5.48 and below is prone to a Cross-Site Request Forgery (CSRF) in the web interface.