The past week was a quietly momentous one for the IT industry, as Cisco promised, and then delivered, a significant announcement that we were told would be a gamechanger.

At an online event held at the tail end of the week, the company announced that it is launching new technology that it promised would secure data centres as never before.

More specifically, Cisco explained that its newly launched Hypershield would enable customers to place security wherever it is needed, whether that be in the cloud, on a data centre, or in a hospital imaging room. The latter, the team noted, can quite literally be a lifesaver.

The Hypershield, apart from sounding like a technology used on an episode of Star Trek, is a ‘’radically new approach to securing data centres and clouds in response to the increasing demands the AI revolution has put on IT infrastructure.’’ 

Protection with a difference

Cisco elaborated that its new Hypershield protects applications, devices and data across public and private datacentres, clouds and physical locations, anywhere, in fact, that customers need reliable security.

The company explained that Hypershield is a revolutionary new security architecture, built with technology originally developed for hyperscale public clouds and is now available for enterprise IT teams of all sizes.

More a fabric than a fence, Hypershield enables security enforcement to be placed everywhere it needs to be. This includes every application service in the datacenter, every Kubernetes cluster in the public cloud and every container and virtual machine (VM).

It can even turn every network port into a high-performance security enforcement point, bringing completely new security capabilities not just to clouds, but to the data center, on a factory floor, or a hospital imaging room. This new technology blocks application exploits in minutes and stops lateral movement in its tracks.

What makes Hypershield different from other cybersecurity solutions we have heard about over the years, is that it has been designed and built with AI in mind from the start.

This may be the impetus for the company’s bold claim that it will enable organizations ‘’to achieve security outcomes beyond what has been possible with humans alone.’’

“AI has the potential to empower the world’s 8 billion people to have the same impact as 80 billion. With this abundance, we must reimagine the role of the datacentre – how datacentres are connected, secured, operated and scaled,” commented Jeetu Patel, Executive Vice President and General Manager for Security and Collaboration at Cisco.

“The power of Cisco Hypershield is that it can put security anywhere you need it – in software, in a server, or in the future even in a network switch. When you have a distributed system that could include hundreds of thousands of enforcement points, simplified management is mission critical. And we need to be orders-of-magnitude more autonomous, at an orders-of-magnitude lower cost,” he continued.

How it works

Technically speaking, security enforcement with Hypershield happens at three different layers: in software, in virtual machines, and in network and compute servers and appliances. This means that it can leveraging the same powerful hardware accelerators that are used extensively in high-performance computing and hyperscale public clouds.

Hypershield was built on three key pillars:

• AI-Native: Built and designed from the start to be autonomous and predictive, Hypershield manages itself once it earns trust, making a hyper-distributed approach at scale possible.
• Cloud-Native: Hypershield is built on open source eBPF, the default mechanism for connecting and protecting cloud-native workloads in the hyperscale cloud. Ciscoacquired the leading provider of eBPF for enterprises, Isovalent, earlier this month.
• Hyper-Distributed:  Hypershield spans all clouds and leverages hardware acceleration like Data Processing Units (DPU) to analyze and respond to anomalies in application and network behavior. It shifts security closer to the workloads that need protection.

As a revolutionary new security architecture, Cisco explained that Hypershield is solving three key customer challenges in defending against today’s sophisticated threat landscape:

• Distributed Exploit Protection: Attackers are adept at weaponizing newly published vulnerabilities faster than defenders can patch. With defenders seeing nearly 100 new vulnerabilities every day, according to Cisco Talos Threat Intelligence, this can lead to catastrophic results. Hypershield aims to deliver protection in minutes by automatically testing and deploying compensating controls into the distributed fabric of enforcement points.
• Autonomous Segmentation: Once an attacker is in the network, segmentation is key to stopping their lateral movement. Hypershield perpetually observes, auto-reasons and re-evaluates existing policies to autonomously segment the network, solving this in large and complex environments.
• Self-qualifying Upgrades: Hypershield automates the incredibly laborious and time-consuming process of testing and deploying upgrades once they are ready, leveraging a dual data plane. This completely new software architecture allows software upgrades and policy changes to be placed in a digital twin that tests updates using the customer’s unique combination of traffic, policies and features, then applying those updates with zero downtime.

​Built into the Security Cloud, Cisco's unified, AI-driven, cross-domain security platform, Cisco Hypershield is expected to be Generally Available in August 2024. With Cisco’s recent acquisition of Splunk, customers will gain unparalleled visibility and insights across their entire digital footprint for unprecedented security protection.

"AI is not just a force for good but also a tool used for nefarious purposes, allowing hackers to reverse engineer patches and create exploits in record time. Cisco looks to address an AI enabled problem with an AI solution as Cisco Hypershield aims to tip the scales back in favor of the defender by shielding new vulnerabilities against exploit in minutes - rather than the days, weeks or even months as we wait for patches to actually get deployed,” said Frank Dickson, Group Vice President, Security & Trust at IDC.

“With the number of vulnerabilities ever increasing and the time for attackers to exploit them at scale ever decreasing, it's clear that patching alone can't keep up. Tools like Hypershield are necessary to combat an increasingly clever malicious cyber adversary," he concluded.