Cisco builds security framework for safe enterprise adoption of AI agents - Help Net Security
When Cisco announced a broad security framework for enterprise AI agents at Cisco Live Amsterdam last month, most coverage treated it as a product launch. The more durable story was buried in the announcement's third paragraph: IOS XE 26, which Cisco says runs on millions of its enterprise routers and switches worldwide, now ships with post-quantum cryptography built in. That is foundation-layer infrastructure news — and the timing matters more than Cisco's framing suggests.
Cisco's IOS XE 26, unveiled February 10, 2026, delivers what the company positions as the industry's first full-stack post-quantum cryptography protections for enterprise routing and switching — a claim that has not been independently audited or verified. The release powers the Cisco 8000 Series Secure Routers, the C9000 Series Smart Switches, and two new variants of the 8100 Series Secure Routers aimed at small and mid-size businesses. The PQC implementation is explicitly designed to align with evolving European and global regulatory guidance — a signal that post-quantum migration is becoming a procurement consideration in regulated industries.
Post-quantum cryptography matters in this context because the threat model is changing faster than most enterprise networks are prepared for. Modern encrypted traffic — including agentic workflows that authenticate, query, and coordinate across hybrid environments — is considered harvest-now-decrypt-later vulnerable. A sufficiently capable quantum computer could eventually break RSA and EC-based encryption retroactively. Long-lived secrets, including session keys and device credentials, become readable the moment an adversary stores encrypted traffic today. Enterprise networks that handle financial data, critical infrastructure, or government contracts are the highest-priority targets for this kind of harvest.
Cisco's positioning is that baking PQC into IOS XE rather than layering it on top addresses the problem at the right altitude. The operating system already manages device identity, key material, and encrypted tunnel establishment for the campus and branch infrastructure where AI-enabled workflows increasingly originate. Putting PQC there — rather than asking network teams to retrofit a separate appliance — means the cryptographic upgrade reaches every device running the OS without a separate deployment project. Cisco claims the new release defends against device tampering and data compromise in addition to the harvest-now-decrypt-later scenario.
The announcement also included updates to Cisco's AI Defense product, which launched in January 2025. New features include an AI Bill of Materials to inventory model context protocol (MCP) servers and third-party dependencies, an MCP Catalog for discovering and managing risk across MCP registries, and expanded red-teaming capabilities that cover multi-turn agent interactions. The Constellation Research analyst Chirag Mehta described the scope as targeting the full risk path from AI supply chain to agentic runtime. Cisco AI Defense also added a developer integration with NVIDIA NeMo Guardrails, the open-source protection framework, extending the vendor's existing Secure AI Factory with NVIDIA partnership.
On the SASE side, Cisco announced AI traffic optimization capable of detecting and duplicating packets to maintain low-latency performance during load surges — relevant as agentic workflows introduce unpredictable burst traffic patterns. New MCP visibility and policy controls allow in-path inspection and governance of MCP communications, and intent-aware inspection evaluates the semantic purpose behind agentic messages rather than relying on conventional signature matching.
The transition risk is real. Enterprise routing and switching hardware has long refresh cycles — five to seven years is common in large organizations. Any PQC migration that depends on OS upgrades will move at hardware replacement speed, not software deployment speed. The EU's coordinated PQC transition roadmap, published in 2025 following the April 2024 European Commission recommendation, creates regulatory pressure that may force those timelines to compress. Cisco's positioning is that IOS XE 26 gets ahead of that pressure. Whether enterprises can act on that depends on whether their procurement and network teams are ready to move faster than their hardware budgets allow.