Ask the Expert

Will Cisco's plan to open access to the IOS improve network security?

Do you think Cisco's plan to open up access to the Internetwork Operating System (IOS) and its code present a security risk for enterprises?

    Requires Free Membership to View

No. On the contrary, I think we may see improved security services as a result.

First, it's important to understand what last year's Cisco Systems Inc. announcement really means. Cisco announced that it plans to provide third-party developers with access to IOS application programmer interfaces (APIs) in an effort to promote the development of tools that work with the Internetwork Operating System. Cisco did not state that it will make IOS code open source or available to the public. Realistically speaking, Cisco will likely develop partnerships with software firms, allowing them to write code that integrates with IOS.

Why do I think the decision may improve security? If the initiative pans out, we're likely to see a number of new network management tools that integrate with IOS. In my opinion, anything that allows the simplification of network administration through centralization of effort is an improvement.

Some may worry about a potential exposure of Cisco's source code to hackers, but consider two relevant facts. First, hackers have already stolen copies of IOS source code and posted it on a Russian website. Despite the fact that this theft occurred four years ago, we haven't seen a crippling series of IOS exploits. Second, there are plenty of open source products out there (think Linux) that have excellent security reputations. In fact, the public nature of such source code opens it up to additional scrutiny by the infosec community, a move that often improves the security of the products.

So while it may take time for Cisco's new IOS strategy to bear fruit, I'm confident it will benefit enterprise network security in the long run.

More information:

  • In 2007, researchers warned of innovative attack methods against Cisco IOS.
  • Get the latest news and expert advice on open source security.
  • This was first published in April 2008

    There are Comments. Add yours.

     
    TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

    REGISTER or login:

    Forgot Password?
    By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
    Sort by: OldestNewest

    Forgot Password?

    No problem! Submit your e-mail address below. We'll send you an email containing your password.

    Your password has been sent to: