AI Firewalls are here! (Can your firewall do this?)

Firewalls as we know them just changed with major announcements from Cisco.
A very big thank you to Cisco for sponsoring this video.
Cisco have announced both an AI Assistant and EVE (Encrypted Visibility Engine) to scan encrypted traffic.
// Cisco news detail //
AI Assistant for Firewall Policy: The Cisco AI Assistant for Security is first going live within the Cisco Cloud-delivered Firewall Management Center and Cisco Defense Orchestrator to solve the big challenge of setting and maintaining complex policies and firewall rules. Administrators can now use natural language to discover policies and get rule recommendations, eliminating duplicate rules, misconfigured policies, and complex workflows with increased visibility as well as accelerated troubleshooting and configuration tasks.
AI-powered Encrypted Visibility Engine for All Firewall Models: Most datacenter traffic today is encrypted-and the inability to inspect encrypted traffic is a key security concern. Decrypting traffic for inspection is resource-intensive and fraught with operational, privacy, and compliance issues. With the 7.4.1 Operating System now available across the entire Cisco Secure Firewall family, customers see AI go even further via the Encrypted Visibility Engine. The Encrypted Visibility Engine leverages billions of samples, including sandboxed malware samples, to determine if the encrypted traffic is transporting malware. It can tell which operating system the traffic is coming from and what client application is generating that - all without the need for decryption.
// DJ Sampath SOCIAL //
LinkedIn: www.linkedin.com/in/djsampath/
Twitter/X: twitter.com/djsampath
// David SOCIAL //
Discord: discord.com/invite/usKSyzb
X / Twitter: twitter.com/davidbombal
Instagram: instagram.com/davidbombal
LinkedIn: www.linkedin.com/in/davidbombal
Facebook: facebook.com/davidbombal.co
TikTok: tiktok.com/@davidbombal
RUclips: www.youtube.com/@davidbombal
// MY STUFF //
www.amazon.com/shop/davidbombal
// MENU //
00:00 - Firewalls of the future
01:22 - DJ's Introduction
03:41 - Acquired by Cisco
04:14 - Hype Behind AI
05:49 - Big New Firewall Announcement
10:40 - The What, How and Why of This New Software
14:30 - Can This Be Trusted?
15:15 - Hallucinations
17:13 - New AI Demo
20:15 - Old vs New Way of Interacting with Tech
21:24 - Launch Info
22:18 - The Benefits of an Conversational Interface
25:11 - Training Data
29:00 - Retrieval-Augmented Generations
29:44 - AI-Powered Encrypted Invisibility Engine
33:39 - How Does This Affect Job Security and Opportunity
36:28 - Guidelines for Entering the AI Space
40:58 - Where Will the World be in 5 Years
42:00 - Conclusion and Outro
cisco
cisco firewall
cybersecurity
networking
ai
artificial intelligence
Please note that links listed may be affiliate links and provide me with a small percentage/kickback should you use them to purchase any of the items listed or recommended. Thank you for supporting me and this channel!
Disclaimer: This video is for educational purposes only.
#cisco #cybersecurity #ai

And then we'll need AI to explain the licensing model to us.

Part of my work involves administering firewalls. In my experience I've found that many companies excessive amounts of complexity to their firewall configurations, and that the vast majority of configurations are insufficiently documented, or not documented at all. Documentation is very important for critical systems like servers and firewalls, and while I might consider using AI as a tool to assist in quickly assessing and documenting complex configurations that need documentation, I wouldn't trust it to write accurately, and, especially given that it's a black-box (which could secretly open back-doors for third parties), I wouldn't want to trust it to configure servers and security/firewall systems. AI has many uses and it can be helpful, but it also needs proper supervision.

This has fundamentally changed my fundamental understanding of the fundamental aspects of firewalls and AI in a fundamental way that is fundamentally fundamental.

I can ignore others but can't Devid, thank you sir.

Ai firewall poisoning, I suppose this will be the new security concern

FTD has improved massively over the past 3 years. Its a shame there is irreversible reputational damage done by ASA w Firepower. Great to see Cisco innovating in this space.

Thanks for sharing, David, how exciting!😍

Use AI for the cisco forums because its hard to find the excact solution you look for

Thank you David for your amazing videos. I wish you success and continuity. ❤

great interview, great Video David, wow... this is an insight into Cisco's AI that nobody has talked about in depth. Love it! thank you!

Man, I really love your content. Masterpiece

I knew firewalls would implement AI eventually but the thing is AI can also be implemented into malware so it doesn't really tip the scale one way or the other but at least helps prevent intrusions from negligent hackers.

David this is insane wow. The Encrypted Invisibility Engine is mind-blowing.

In beginning of this video, within 1 min that guy just said "YOU KNOW" more than 10 times😂

Wow!!!!!!!!!!!!!!!!!!! CaaS = Cybersecurity as a Service! Double Wow! Not having enough Cybersecurity professionals problem has just been solved? Crazy new info.

I think I’ve could hear “you know” 500 times. 😂

Great job once again

Brilliant interview.
Thought provoking.
My highlight was asking “Can I trust this?” …

This gets me "You don't have to learn a new language anymore... "
Eventually you don't have to work/study anymore cause there's ai doing it.
You say : i'm a firewall expert this my job
Ai says: you taught me well now let me take over.
Honestly, with how fast ai is rising. I can't help to think its impact on jobs.. or maybe im just watching too much movies.

Great video and interview David! The advancements in firewall technology, with the introduction of AI Assistant and EVE, are truly groundbreaking. We're excited to demo Cisco's new AI Assistant and EVE on our Secure Firewall channel. Keep up the great work!

Great interview, very informative! Many thanx! =)

Good job❤❤

One of the biggest issues with "AI" is how easy it is to jailbreak itself.... this seems like a lateral change at best. When we get past the current stage of "giant data set" and have AI that can actually reason, it'll be a big shift. Right now "AI" is simply the Max Powers of software.

Love ur videos sir❤❤

22:47 interesting GenAI domain specific topic. This creates a great use case for firewall ai poisoning vectors.

When does AI change the way attackers create their attacks? If AI is used to prevent attacks, then it is logical that AI will know everything to create new attacks if a user understands how to ask for these attacks.

9:28 We've all been there. If you ever worked as an admin and you took over for someone else, you know what it's like. 🙂

Great interview! I'm wondering what the fundamental difference is between EVE and a classic NGFW application filter :D ?

Just a matter of time before AI conquers humans...

Really amazing topic thanks
I also request some topics of Cisco network

The hesitation around allowing AI to make configuration changes reminds me of the days where Virtual Machines were considered a novelty, or toys. Today, Azure and others are built upon VM/IAAS technologies.

Exactly help w finding info in the cisco support soup.

🎯 Key Takeaways for quick navigation:
00:00 🌐 *Introduction to AI in Firewalls*
- Cisco's development in recognizing traffic types without decrypting packets.
- Introduction to Encrypted Visibility Engine (EVE).
01:22 🌍 *DJ's Background and AI in Cybersecurity*
- DJ's journey from immigrant to AI expert in cybersecurity.
- Founding of Armorblox focusing on AI in cybersecurity.
03:12 🤖 *Evolution of AI and Security Applications*
- The early days of AI and the rise of generative pre-trained Transformer models.
- Application of AI in cybersecurity and email security.
04:10 🚀 *AI's Impact on Business Processes and Security*
- The changing perceptions of AI in business and security.
- The journey of AI from skepticism to trust and daily use.
05:28 💡 *AI's Accessibility and the Spark in People's Imagination*
- AI becoming accessible to a broader audience.
- The importance of large language models in AI applications.
06:19 🛡️ *Cisco's AI Assistant for Firewalls*
- Introduction to Cisco's AI Assistant for firewalls.
- The importance of AI in managing complex firewall systems.
07:43 🤝 *Unified AI Assistant for Security*
- Concept of a unified AI Assistant for various security applications.
- The ease of using natural language for security management.
08:35 🧠 *AI's Role in Simplifying Security Management*
- AI's capability in simplifying policy management and troubleshooting.
- The potential for AI to manage extensive rule sets in firewalls.
10:26 🌟 *Importance and Benefits ofAI in Cybersecurity*
- The critical role of AI in enhancing user experience and security efficacy.
- AI's potential in economic efficiency for cybersecurity.
11:47 🛠️ *Cisco's Three Pillars in AI: Assist, Augment, Automate*
- Cisco's approach to AI divided into assist, augment, and automate.
- The focus on data models and governance in AI development.
13:11 📊 *AI Development Focus: Data, Models, Governance*
- Emphasis on the selection of appropriate data and models for AI.
- The importance of governance and responsible AI in security.
14:06 ⏩ *AI's Rapid Development and Transition to Practical Applications*
- The fast pace of AI development and its move towards practical applications.
- The difference between AI in demos and real-world products.
15:02 🤖 *Trust and Accuracy in AI Responses*
- Addressing the issue of trust and accuracy in AI-generated responses.
The implementation *of technology to ground AI responses in accurate data.*
17:22 🖥️ *Cisco's Defense Orchestrator and AI Integration*
- Introduction of the AI assistant in Cisco's Defense Orchestrator.
- The AI assistant's features and user interaction.
19:40 🚀 *Expanding AI Capabilities in Security Products*
- Future plans for expanding AI capabilities in various security products.
- The significance of a conversational interface in managing security.
21:29 🌐 *Launch and Expansion of Cisco's AI Assistant*
- Launch details of Cisco's AI assistant and its expansion plans.
- The assistant's application in different security scenarios.
23:18 💻 *Transition to Conversational Interfaces in Technology*
- The gradual transition to conversational interfaces in technology.
- The shift from traditional input methods to AI-driven interactions.
24:37 🛡️ *AI as a Game Changer in Cybersecurity Defense*
- AI's potential to tip the balance in cybersecurity defense.
- The impact of AI on the economics of cyber attacks.
26:01 🧠 *Training Data and Model Selection in AI*
- The importance of selecting the right training data and models for AI.
- Building domain-specific AI models for unique applications.
28:15 🌟 *Cisco's Strength in Proprietary Data for AI*
- Cisco's advantage in having access to proprietary data for AI training.
- The future of AI driven by data-rich companies.
30:00 📶 *AI in Encrypted Traffic Analysis and Security*
- Using AI to analyze encrypted traffic for security purposes.
- The development of EVE for identifying malware in encrypted traffic.
34:01 🚀 *AI's Impact on Jobs and Future Roles*
- Discussion on AI's impact on job roles and career paths.
- The evolution of job roles in the era of AI and automation.
36:50 🎓 *Career Advice in the Age of AI*
- Guidance on career paths and areas of focus in AI.
- The accessibility of AI technologies for a wider audience.
39:53 🌍 *Future AI Ecosystem and Application Development*
- The growing ecosystem of applications built on AI technologies.
- The potential for developers to create new AI-driven solutions.
41:19 🔮 *AI's Future in Everyday Life and Technology*
- Predictions on the integration of AI in daily life and technology.
- The shift towards more natural interactions with technology through AI.
Made with HARPA AI

Great job david sir. I am waiting for chapter 6 controlling file and directries permession

The gong at 8:44

I’m trying my hardest to learn AI, it’s one of the best things and people are already making money with it.😊

CIsco!! We charge 3x as much, and charge you monthly forever! :)

Good questions in interview

And you are inadvertently my teacher too, but for real though! AI already got old...We talkin' about AGI now!

Please create a tutorial video how can we setup Cisco AI Assistant for Security to our existing Firewall " FTD or FMC" so that we can start using it. Thank You David.

It sounds quite privacy invading in some of the things it considers.

I'm still watching, maybe will be mentioned later but will this be made available to existing Meraki firewall devices

Good editing btw.
Just to mention; how would the future with AI look like. Defense systems with ai maybe will be to fast for humans, so i thought attacks will be command by humans and execute by AI.
Could you imagine?

Been working in cyber security for 17 years. The year this stuff starts getting rolled out on a large scale is the year I become a plumber or an electrician.
Why?
This kind of technology makes working in IT boring and totally takes away any intellectual challenge. Basically: I see this stuff making the next generations of people as dumb as possible.
The only skill people will have is asking an AI to do stuff for them, without really understanding what the AI is doing. Basically we'll be reduced to call takers in a call center following a script. If there's a power failure and people's AI is unavailable for an hour, people will just be stumbling around in the dark, not capable of doing anything anymore without their little tools.
Why? Because they were never trained to use their brain.
Djeezes this really does look like the future will be boring and without any intellectual challenges left.
I really wonder what the level will be of the next generations of computer scientists graduating in the coming years, probably only trained in using AI and not in actually thinking for themselves.
Man, people will become so stupid because of this.
This will also reduce the level even more in our branch of work. There are now already a lot of incompetent people at work who think that with a couple of bootcamps under their belt they are geniuses. The only thing I see is the incompetence level rising. Because of this, my grandmother of 93 will be able to work in IT and call herself an engineer. Great, the bar just got lowered even more.
Man this line of work will become so boring and so meaningless so very fast 🙂
I'm already seeing this at work: incompetent managers and software engineers who believe that introducing github copilot will automagically solve all the consequences of years of security neglect in their code.
People are just naïve.

great video Mr. Bombal, but i'm still waiting videos part 3 you and Mr. OTW

CCIE, AI track

Interesting topic

How this AI powered is identify the staff and external people when you ask questions

Isn’t that what Co-Pilot for Defender and Sentinel is going to be anyhow?

Cisco is trying to catch up with Palo Alto and Fortinet

Hey David where is OTW it's long time we haven't got his video?

What kind of jobs cannot be replace by AI? I am checking and for now I only see GRC that always will require a "person", so audits and so on, but besides that, what other jobs?

As far as losing jobs...the dematerialization will begin with the sub par professionals (think of bad teachers) first. People not on the top of their jobs are at risk first. The middle level performers will have to step up and be flexible in use with the new tools..."Prompt Engineering." Those who are high performers will become the administrators of Ai with oversight (the best of the best) will be the check and balance. The game has and will continue to change in this direction. If you can't use Ai effectively, you will not have a job in the field. This will apply to all fields in the future...the very near future.

....yeah... BUT.... what about AI BACKED HACKS AND ATTACKS!?... ,I'm sure glad CISCO brought this guy on board, im afraid he mite be TOO good , hah

Nice, firewalls good for security of the database of my own made gta

David is the best.

Do you have a CCNA complete course in UDEMY?

Wow amazing interview, you discussed interesting topics. Please bring him back to the show in the future ❤️

👏🏿👏🏿‼

So prompt engineering will be more important. At least initially it will be good to have a background knowledge.

What do you know, great minds think alike.😅 Ai, will make defender side ALOT more interesting and easier by keeping up with all the red tearmers and better.😎 Differently when alot attackers then defenders out there, but with help AI...those people probably going to find it ALOT MORE harder. Which is what we want of course.

Well all we need to do now is coin a termology for when you get an AI firewall to do things like DOS, DDOS, and equally malware that will spoof its traffic patterns to appear like some other whitelisted application traffic-wise is a thing that will only flourish. Kinda all twisting the AI aspect to do things for you, I'll coin twaist (twist and AI combined) for this, so twaisting the AI

@devidbombal Is cisco disable yersinia graphical interface mode on kali linux? it shows an error and can't solve it please help

I mean I am a Firewall engineer . So does that I would loose my job as AI is taking over 😢

hey david, i have a video idea that you could do with occupytheweb since i really love the series. could you break down on the series mr robot where elliott hacks his coworkers social media in season 1?

The black wall is here

Hybrid Intelligence involving an SOC will still be the way forward for a while imo. No one's gonna trust AI to control their firewall for quite a while. There's a reason people who use IPS often switch it to IDS mode very quickly and just choose to rely more on EDR and curated SOAR rules etc.

How is this different from automation?

Interesting....🤔

The problem I have with AI writing firewall rules are many fold. Who is to say that the AI wrote the rule correctly? Who gives the AI the dataset that says 'this is how you do it', obviously that answer is Cisco but does Cisco always get it 100% right? And our in the enterprise not every problem has the same solution, there is always a few one-off's Also, what happens to the market of a skilled onsite network engineer? Not to mention am I taking my config, which may be enterprise protected information, and giving it to Cisco to setup. This way Cisco know my config. Imagine a future day where Cisco has the edge firewall configs of hundreds or thousands of customers and then they get hacked.
Don't get me wrong, its interesting tech but I think I'll let other people kick the tires and take the test drive.

Hi David! Can you help me? How do I block a rogue CCTV IP on my network that is monitoring me?

and again when wore the ai
halucinations solved? i forgot the date...

A lot of network engineers will lose their jobs. This is so discouraging to learn new technologies.

what is responsible AI

His answer for job security is not really clear, what jobs will be created because of AI? Excel sheets did not replace all of the works it just automated some of the process, AI is great for business owners it will reduce opex a lot but it will cost a lot of jobs

can you explain how to connect vpn using udptunnel

Cisco doesn't have the best track record when it comes to security.

19:09- "List all of the policies that are active" "It comes back and says, "hey here are some of the polices that have been actively deployed"
This is not a value-add. In current systems, you don't have to ask which policies have been deployed, you just look at them. Furthermore, the answer that is limited to only some of the policies is useless. If I need to know a particular application is not allowed, I need to see all the rules. Or to use the search function for that App.

Can I get my money back for my ENCOR exam please?

So now Cisco needs AI to handle a bad user interface? No wonder they are loosing marketshare.

Why do people feel like you have to change things in the form of a revolution? Because they want control .

It doesn't sound very impressive tho

all fun and games but i you guys know that this ai is just a language model right?

ai controlling a firewall "no thanks"

wow
uhm but did i hear right 800k in his pocket or 800bucks xD xD a cliche imigrat with 800k would normally be a Monaco imigrat xD xD
besides this little misshearing of my side - great video and tech

indian are always coooooollllllllllllllll

I would never buy a Firepower in my life just not worth the Risk, The Palo Alto Platform with cortex also seems to going in the right direction , I suspect in 10 years all services will run some Kinda of Micro LLM or A LLM mainframe like instance running per company with maybe plugins for diffrent use cases

Imagine Ai gets to a point way even if an user gets tricked into giving their login information confidential, but the attacker cant this read that's user email/messages?
Lucky for you, I have an idea how that could be done...IP address comes in clutch, just because an attacker has the login details...but they don't have the IP address aka the device to read those emails/messages. Now combo that idea with an VPN? Making IP address not so important to very much important. Let's say an attacker somehow gets thats IP address, that's why an VPN is very important because the actual user can just change locations with an VPN. Say user doesn't have an VPN though, that's ok... because with email/message the account needs an different token to read it? Again if the attacker somehow gets the user real IP, the user could be been fully hacked because with the IP... attacker can get the new tokens every time. Sooooo? An VPN could stop that vulnerability in away? Then again, if can work out a way even if an attacker has the user IP, they would need the physical device. An VPN probably wouldn't be needed.😅😒😎

Sorry but why would anyone put any investment into on-prem resources/infrastructure? The future is in the cloud and that was known 10 years ago. You absolutely don't need all this when offices won't exist in the future.

PLZ MAKE THE VIDEO FOR FACEBOOK HACK ACC RECOVER IT PLZ BIG FAN

+Plus

I find AI interesting and has a lot of uses. I do not use it and do not wish to use it. Anybody using AI is training AI to take over hundreds of millions of jobs in the future. If nobody used AI, AI would not have learnt what it has at this rate. We all know that AI will be used against us. This is just my opinion.

Former DARPA? FFs

Second

the first

Boy you are literate/

Cisco is trying to be everywhere and it can't move beyond layer three of OSI model. Cisco resides at layer 3. Anything beyond layer three is waste of time and money

I will gladly use AI as a tool, but I will NEVER fully trust it.