Cisco has rolled out a second release of its Tetration Analytics package with features such as a smaller footprint and a cloud service that will go a long way toward making the system alluring to more data center customers.
Announced in June of last year, Cisco’s Tetration Analytics is a turnkey analytics package that gathers information from hardware and software sensors and analyzes the information using big data and machine learning.
Tetration software sensors support Linux and Windows server hosts, while hardware sensors are embedded in Cisco network switch ASICS: Nexus 9200, Nexus 9300-EX and Nexus 9500-EX, to collect flow data at line rate from all the ports. Per Cisco once in place, the Tetration platform learns its enterprise environment and any policies IT has in place. From there it can learn which applications are dependent on each other throughout their data center and into the cloud. It can monitor server behavior patterns and group servers more efficiently.
For policy setting, customers can validate new policies by running them through Tetration first to see what their impact would be on the enterprise. Users can also use this information for regulatory compliance applications.
In the first release of the platform it was largely looking and listening to customer networks and applications and now with release 2 it can act on what it has found – automatically enforcing policies, securing the enterprise and continuing to help customers get a better handle on their data centers, said Cisco senior director, product management Yogesh Kaushik.
Security was always a key part of Tetration and the second release builds more options onto the system. Kaushik said customers are moving toward a “zero trust” policy which locks down all access to applications – but with highly distributed applications, like cloud apps, that have many components and are multitiered it can be complex to implement, Kaushik stated.
Cisco says Tetration Analytics policy recommendation and enforcement engine can now take micro-segmentation -- a security technique enabling workload separation -- a leap further by delivering application segmentation, which drives policies across the application layer, regardless of where the application resides: virtualized, bare metal, physical servers, or in the cloud. Policies can be pushed to any vendor's firewall, and can be orchestrated at the network layer as well, Cisco said.
Cisco says Tetration can capture a million events per second and make decisions behavior analysis of billions of flows, processes, and workload characteristics allowing for realtime policy enforcement. The idea is that as customers move towards a more devops environment where apps are rapidly brought online and off, Tetration can implement security policies quickly.
Sign up for CIO Asia eNewsletters.