 |
Security
The solution provides a common infrastructure that integrates security throughout all aspects of the network and upon which collaborative processes between the various security and network elements and innovative technologies to adapt to new threats are layered. The Cisco Self Defending Network greatly simplifies the security, network and business environment. Tighter integration of security and networking results in tighter security. Greater security visibility across your entire network results in easier operational management and greater policy control. Additionally, the network as the platform for security enables logical evolvotion to advanced security services without a total technology refresh or fork-lift upgrade, improving the value of your security investment over time.
The Cisco ASA 5500 Series offers businesses a comprehensive portfolio of services that are customized through product editions tailored for firewall, intrusion prevention (IPS), anti-X, and VPN. These editions enable superior protection by providing the right services for the right location. Each edition combines a focused set of Cisco ASA services to meet the needs of specific environments within the network. By meeting the security needs of each location, the overall network security posture is raised. The Cisco ASA 5500 Series enables standardization on a single platform to reduce the overall operational cost of security. A common environment for configuration simplifies management and reduces training costs for staff, while the common hardware platform of the series reduces sparing costs. Each edition addresses specific enterprise environment needs: - Firewall Edition: Enables businesses to securely and reliably deploy mission-critical applications and networks. A unique, modular design provides significant investment protection and lower operational costs. Cisco ASA Firewall edition (pdf) - IPS Edition: Protects business-critical servers and infrastructure from worms, hackers, and other threats through a combination of firewall, application security, and intrusion prevention services. - Anti-X Edition: Protects users at small or remote sites with a comprehensive package of security services. Enterprise-grade firewall and VPN services provide secure connectivity back to the corporate headend. Industry-leading anti-X services from Trend Micro protect the client system from malicious Websites and content-based threats such as viruses, spyware, and phishing. Cisco ASA Anti-X edition (pdf) - VPN Edition: Enables secure, remote user access to internal network systems and services, and supports VPN clustering for larger enterprise deployments. Secure Sockets Layer (SSL) and IP Security (IPsec) VPN remote-access technologies combine with threat mitigation technologies such as Cisco Secure Desktop, and with firewall and intrusion prevention services to ensure VPN traffic does not introduce threats to the enterprise. ASA 5500 PDF Downloads: Cisco ASA 5500 Series Business Edition Solution (pdf) Cisco ASA 5500 Series Adaptive Security at a Glance (pdf) Cisco ASA 5500 Series Remote Access At a Glance (pdf)
Cisco Security Agent (CSA) security software provides threat protection for server and desktop computing systems, also known as endpoints. The Cisco Security Agent goes beyond conventional endpoint security solutions by identifying and preventing malicious behavior before it can occur, thereby removing potential known and unknown security risks that threaten enterprise networks and applications. Cisco Security Agent mitigates new and evolving threats without requiring reconfigurations or updates on endpoints, providing robust protection with reduced operational costs. Cisco Security Agent Data Sheets: Security Agent Version 5.1 (pdf) Security Agent Starter Bundle (pdf) Security Agent for IP Communications (pdf)
Security solutions are evolving to meet changing security requirements, and Cisco continues to develop solutions to meet these demands. Today, Cisco embeds network security into the hardware of every integrated services router and offers end-to-end protection with Cisco IOS Software feature sets. Integrating Cisco IOS Software security directly into the router offers many benefits. It uses the existing network infrastructure, helping enable new security features on the router without deploying additional hardware. Integration provides the flexibility to apply security functions, such as firewall, inline intrusion prevention, and VPNs, anywhere in the network to ensure the best defense against security threats. Router-based, switch-based, and appliance-based functions combine to offer end-to-end protection throughout the network. Integrating security directly into the router also protects network gateways, because routers are the first points of entry into the network. Security on the router not only protects the first point of entry into the network, but it also takes advantage of the intelligence of the router as a "trusted handler" of the traffic, integrating more advanced security, quality of service (QoS), and routing features. At the router, security information can be shared and a fast, accurate response to a threat coordinated, helping to ensure high network availability. And integrated security protects the router itself, while creating a line of defense against attacks targeted directly at the network infrastructure, such as distributed DoS (DDoS) attacks. Cisco Integrated Service Router Chart (pdf)
Cisco NAC Appliance is an easily deployed Network Admission Control (NAC) product that uses the network infrastructure to enforce security policy compliance on all devices seeking to access network computing resources. With the NAC Appliance, network administrators can authenticate, authorize, evaluate, and remediate wired, wireless, and remote users and their machines prior to network access. It identifies whether networked devices such as laptops, IP phones, or game consoles are compliant with your network's security policies and repairs any vulnerabilities before permitting access to the network. Cisco NAC Appliance extends NAC to all network access methods, including access through local area networks (LANs), remote-access gateways, and wireless access points. Cisco NAC Appliance also supports posture assessment for guest users. |
 |
|
 |
 |