Cisco has unveiled an open source application detection and control with its OpenAppID application-focused detection language. As new apps are being introduced into the corporate network at an unprecedented rate, the OpenAppID enables flexibility to control new and custom apps on the network as fast as possible. It provides application visibility, accelerates development of application detectors, and controls and empowers the community to share detectors for greater protection.
Cisco says that the OpenAppID is especially important for organizations utilizing custom-built or specialized applications and those in highly regulated industries that require the highest levels of identification and control. In addition, the OpenAppID will accelerate and expand the breadth of application detection, by facilitating open community sharing and enhancement of new application detectors. It also supports critical capabilities such as actionable application detection, reporting and control. Cisco is also delivering a special release of the Snort engine that includes the new OpenAppID preprocessor for the Snort community to begin working with OpenAppID to build application detectors.
"As a long-time Snort user, we rely on the flexibility, transparency and control that open source tools give us to better protect our entire environment,” said Kevin A. Kerr, Chief Information Security Officer and Senior Advisor, Risk Management at Oak Ridge National Laboratory. "While proprietary systems leave us beholden to update cycles and priorities, open source allows us to tailor protection at our convenience. By delivering application detection and control to the open source community, Cisco is empowering users with the ability to create custom application detectors and take action to address new threats in real time."
"Martin Roesch, creator of Snort and Vice President and Chief Architect, Cisco Security Business Group, said, “Open source is very important because it creates real collaboration and trust between vendors and the experts that are tasked with addressing advanced and aggressive threats. By open sourcing application visibility and control, Cisco is empowering the community to create technically superior solutions to address their most complex and unique security challenges.”
Source - Cisco
