Arista embeds network detection and response into switches

Arista Networks is adding embedded security and packet analysis capabilities to its 720XP series of switches. 

By embedding NDR (Network Detection and Response) capabilities into the Arista EOS-based switches themselves, Arista says it can deliver broader visibility and threat hunting across the modern cognitive campus. 

The new capabilities build on Arista's Autonomous Virtual Assist (AVA) platforms with two key components: AVA Sensors and the AVA Nucleus. AVA Sensors support a variety of form factors from stand-alone appliances and virtual to cloud workloads and now, within campus power over ethernet (PoE) switches. The AVA Sensors analyze the full packet, including application layer data which sets the stage for automated and manual threat hunting. The sensors then transfer the “just right” deep-packet data to the AVA Nucleus, which is offered as both on-premises and SaaS. 

Arista will deliver the capabilities via a switch software upgrade . The company cites minimal impact on switch performance or reliability.

“Network security has been an ongoing challenge for most organizations due to hardware deployments and configuration changes needed at the network infrastructure level. While organizations acknowledge that the network presents a unique vantage point, security teams have been forced to trade off network visibility and ongoing operational costs,” said Rahul Kashyap, Vice President and General Manager of Cybersecurity and CISO at Arista Networks. “By building NDR capabilities into the switching infrastructure itself, Arista enables a built-in, secure network that reduces organizational risk by speeding up both time to detection and time to remediation.”

The new capabilities are expected to be generally available in Q2, 2022, with early trials in March 2022.