tranmyphuc
23-04-2008, 11:09 AM
Cisco Self Defending Network
Cisco is today announcing the next phase of the Self-Defending Network strategy. Expanding upon the tremendous momentum from delivering an integrated, adaptive and collaborative system, Cisco is now enabling organizations to further leverage their security investment to streamline IT risk management and reduce the security and compliance risks their businesses face.
Cisco is enhancing the Self-Defending Network to provide expanded capabilities that enable endpoint, network, content and application security services, to deliver solutions to today’s security challenges. This empowers IT organizations to more rapidly identify and respond to evolving threats, enforce business policies and protect critical assets all while decreasing complexity, easing the IT administrative burden and lowering total cost of ownership.[/font]With these new security advancements, organizations can more effectively and efficiently address top-of-mind business concerns including:
Data Loss Prevention
Corporate and Regulatory Compliance Mandates
MalwareThe Cisco Self-Defending Network enables companies to architect a trusted infrastructure based on best of breed security in a systems approach that protects against business disruption and enables the company to evolve and operate effectively while maintaining a secure, compliant environment.
So what’s new with this next phase? Cisco has expanded and enhanced its Self-Defending Network portfolio to include CSA 6.0, FWSM 4.0, MARS 6.0, ACE Web Application Firewall, IOS Router Security Improvements and CSM 3.2 to name a few. Let’s take a closer look at these new enchantments in more detail.
Cisco Security Agent 6.0
]Cisco Security Agent 6.0 is the first endpoint security solution that integrates behavioral-based intrusion protection, data loss prevention, and signature based anti-virus into a single manageable agent. This unique blend of capabilities defends servers and desktops against sophisticated zero-day attacks, enforces acceptable-use and compliance policies, simplifies management and reduces TCO. CSA 6.0 provides:
Real-time behavioral-based malware protection
Device malware scanning and deletion
Identification and control of sensitive information
Easier, faster deployability
Automatic, no-cost AV signature updates
Automatic, no-cost AV signature updatesRead the CSA 6.0 Data Sheet (http://www.cisco.com/en/US/prod/collateral/vpndevc/ps5707/ps5057/ps9595/data_sheet_c78-458616.html)
Read the CSA 6.0 Product Bulletin (http://www.cisco.com/en/US/prod/collateral/vpndevc/ps5707/ps5057/ps9595/product_bulletin_c_25-458614-00.html)
IPS New Products and Features
Intrusion Prevention Systems (IPS) have gained prominence as companies seek to combat the speed and sophistication of attacks on business networks. Hackers increasingly target smaller businesses, which lack the IT resources of large enterprises and, therefore, suffer higher downtime, pay penalties for non-compliance, and fail to keep up with IT security. Smaller businesses need a simple, right-sized IPS solution that can deliver the same protection available to large enterprises.[FONT='Georgia','serif']Cisco is enhancing its enterprise IPS portfolio while tailoring IPS to the needs of smaller businesses with dramatically simplified IPS management on its best-selling ASA appliances. Cisco IPS portfolio enhancements include:
IPS Manager Express (IME) (http://www.6200networks.com/wp-content/uploads/docs/SDN/cisco_ips_manager_express_datasheet.pdf): A brand new, all-in-one application for IPS provisioning, monitoring, and reporting
New ASA 5500 IPS Module (AIP SSM-40) (http://www.6200networks.com/wp-content/uploads/docs/SDN/cisco_asa_5500_series_ips_solution_datasheet.pdf): Expanded line of IPS hardware modules delivers up to 650 Mbps
IPS Software v6.1 (http://www.6200networks.com/wp-content/uploads/docs/SDN/cisco_ips_software_datasheet.pdf): Enhanced health data, sensor protection, administration, and auto signature updates
Cisco Services for IPS (http://www.cisco.com/en/US/products/ps6076/serv_group_home.html): Comprehensive Unified Communications protection, expedited Microsoft vulnerability coverage, and improved P2P threat detectionCisco Security Manager 3.2
The silo approach to security management is recognized as an ineffective mechanism for managing today’s increasingly complex environments. It over-burdens the IT staff and leads to security gaps and a slow response to new business initiatives.Cisco Security Manager increases IT operational efficiency by enabling comprehensive, cross platform, cross-technology security policy configuration and control, increasing deployment accuracy and speed while conforming to established workflow processes and reducing operating expenses.CSM 3.2 greatly enhances administrative visibility and control and expands our competitive differentiation with:
Improved CSM – MARS collaboration
Support for desktop switches
Expanded product support: ASA 5580, IOS AIM-IPS, 4270, and more
Scheduled deployment support
Workflow notification enhancementsRead the CSM Data Sheet (http://www.cisco.com/en/US/prod/collateral/vpndevc/ps5739/ps6498/data_sheet_c78-458677-00_ps6498_Products_Data_Sheet.html)
Cisco MARS 6.0
Real-time visibility into the operations of the security infrastructure is necessary to quickly identify and respond to current security risks. This task can overwhelm security administrators as they attempt to examine the intelligence gathered from their environment, determine the threats and calculate the optimized response.Cisco Security MARS increases staff productivity and strengthens the business security posture by analyzing intelligence from Cisco and non-Cisco devices, identifies threats, provides attack visualization and determines the most appropriate mitigation action. The powerful and intuitive report generator assists organizations in meeting operational compliance requirements.CS-MARS 6.0 provides a standard code-base for all platforms and delivers greater value to our customers with:
Standard code base for all platforms
Wireless Controller support
Expanded device support: ASA 8.0, FWSM 3.2, IPS 4270, IPS 6.0, NAC
Open schema for accelerated device support
Community enablement program: Forum for MARS stakeholders
Integration with Trend Damage Cleanup ServiceRead the CS-MARS Data Sheet (http://www.cisco.com/en/US/prod/collateral/vpndevc/ps5739/ps6241/data_sheet_c78-458671.html)
Web Application Firewall
Companies are increasing efficiency and profitably with the implementation of new Web 2.0 and SOA application solutions. Unfortunately, criminals are increasingly exploiting these applications for identity theft, data theft, application disruption, and fraud driving compliance efforts focused on application security as seen with PCI.The Cisco ACE Web Application Firewall provides full compliance with the latest PCI requirements. It combines deep Web application analysis with high-performance XML inspection and management to address the full range of threats associated with Web application services. The result is dramatically reduced business exposure to attacks on modern mission critical applications, protection of sensitive customer and corporate information, and enhanced availability. The Cisco ACE Web Application Firewall provides:
Enhanced enforcement of PCI compliance
Full-proxy firewall
Application access enforcement
HTML and XML traffic inspection
Attack pattern recognition
Human-assisted learning
Policy-based provisioningRead the Web Application Firewall Datasheet (http://www.6200networks.com/wp-content/uploads/docs/SDN/cisco_ace_waf_datasheet.pdf)
Cisco Firewall Services Module 4.0
The volume of information within organizations is increasing exponentially and the need to share information in an increasingly collaborative fashion is driving the need to enable high-speed data transfers between trusted hosts for transactions such as back-ups, grid computing, FTP, imaging and financial trading. Current security mechanisms can be an unnecessary bottleneck for these business critical transactions.Cisco is addressing this growing requirement to enable very high-speed communications between trusted hosts without forgoing security. The Trusted Flow Accelerator (TFA) feature incorporated into FWSM 4.0 establishes a secure connection between trusted hosts, and then suspends per-packet analysis. This allows large volumes of information to be transferred in a secure environment, based on policy, in a fraction of the time. Once the transaction is completed, FWSM closes and secures the connection and reestablishes per-packet analysis between these hosts.FWSM Trusted Flow Acceleration (FTA) enables:
10+ Gbps throughput per flow
20-50 Gbps aggregate throughput
IOS Router Security
Customers are seeking ways to increase the protection of their users, business environment and enable new business initiatives while maximizing their infrastructure investments to reduce cost of operations. The security innovations on the industry-leading router portfolio include:
Cisco IOS Content Filtering
(http://www.6200networks.com/wp-content/uploads/docs/SDN/cisco_ios_content_filtering_datasheet.pdf)Reputati on-based filtering: prevent adware, spyware, malicious sites
Category filtering: prevent connectivity to improper sites
Keyword Blocking, White/Black list support
SIP Protection for Secure Unified Communications
GET VPN support on 7200 VSA with 300% performance improvement (http://www.cisco.com/en/US/products/ps7332/index.html)
Summary
Cisco provides businesses the necessary solutions to address their most challenging security issues through comprehensive solutions for network, endpoint, content and application security with integrated management. Whether preventing data loss, defending against botnets, or meeting corporate and regulatory compliance requirements, the Cisco Self Defending Network delivers the security platform for your business.
Chúc mọi người vui !!!!
Cisco is today announcing the next phase of the Self-Defending Network strategy. Expanding upon the tremendous momentum from delivering an integrated, adaptive and collaborative system, Cisco is now enabling organizations to further leverage their security investment to streamline IT risk management and reduce the security and compliance risks their businesses face.
Cisco is enhancing the Self-Defending Network to provide expanded capabilities that enable endpoint, network, content and application security services, to deliver solutions to today’s security challenges. This empowers IT organizations to more rapidly identify and respond to evolving threats, enforce business policies and protect critical assets all while decreasing complexity, easing the IT administrative burden and lowering total cost of ownership.[/font]With these new security advancements, organizations can more effectively and efficiently address top-of-mind business concerns including:
Data Loss Prevention
Corporate and Regulatory Compliance Mandates
MalwareThe Cisco Self-Defending Network enables companies to architect a trusted infrastructure based on best of breed security in a systems approach that protects against business disruption and enables the company to evolve and operate effectively while maintaining a secure, compliant environment.
So what’s new with this next phase? Cisco has expanded and enhanced its Self-Defending Network portfolio to include CSA 6.0, FWSM 4.0, MARS 6.0, ACE Web Application Firewall, IOS Router Security Improvements and CSM 3.2 to name a few. Let’s take a closer look at these new enchantments in more detail.
Cisco Security Agent 6.0
]Cisco Security Agent 6.0 is the first endpoint security solution that integrates behavioral-based intrusion protection, data loss prevention, and signature based anti-virus into a single manageable agent. This unique blend of capabilities defends servers and desktops against sophisticated zero-day attacks, enforces acceptable-use and compliance policies, simplifies management and reduces TCO. CSA 6.0 provides:
Real-time behavioral-based malware protection
Device malware scanning and deletion
Identification and control of sensitive information
Easier, faster deployability
Automatic, no-cost AV signature updates
Automatic, no-cost AV signature updatesRead the CSA 6.0 Data Sheet (http://www.cisco.com/en/US/prod/collateral/vpndevc/ps5707/ps5057/ps9595/data_sheet_c78-458616.html)
Read the CSA 6.0 Product Bulletin (http://www.cisco.com/en/US/prod/collateral/vpndevc/ps5707/ps5057/ps9595/product_bulletin_c_25-458614-00.html)
IPS New Products and Features
Intrusion Prevention Systems (IPS) have gained prominence as companies seek to combat the speed and sophistication of attacks on business networks. Hackers increasingly target smaller businesses, which lack the IT resources of large enterprises and, therefore, suffer higher downtime, pay penalties for non-compliance, and fail to keep up with IT security. Smaller businesses need a simple, right-sized IPS solution that can deliver the same protection available to large enterprises.[FONT='Georgia','serif']Cisco is enhancing its enterprise IPS portfolio while tailoring IPS to the needs of smaller businesses with dramatically simplified IPS management on its best-selling ASA appliances. Cisco IPS portfolio enhancements include:
IPS Manager Express (IME) (http://www.6200networks.com/wp-content/uploads/docs/SDN/cisco_ips_manager_express_datasheet.pdf): A brand new, all-in-one application for IPS provisioning, monitoring, and reporting
New ASA 5500 IPS Module (AIP SSM-40) (http://www.6200networks.com/wp-content/uploads/docs/SDN/cisco_asa_5500_series_ips_solution_datasheet.pdf): Expanded line of IPS hardware modules delivers up to 650 Mbps
IPS Software v6.1 (http://www.6200networks.com/wp-content/uploads/docs/SDN/cisco_ips_software_datasheet.pdf): Enhanced health data, sensor protection, administration, and auto signature updates
Cisco Services for IPS (http://www.cisco.com/en/US/products/ps6076/serv_group_home.html): Comprehensive Unified Communications protection, expedited Microsoft vulnerability coverage, and improved P2P threat detectionCisco Security Manager 3.2
The silo approach to security management is recognized as an ineffective mechanism for managing today’s increasingly complex environments. It over-burdens the IT staff and leads to security gaps and a slow response to new business initiatives.Cisco Security Manager increases IT operational efficiency by enabling comprehensive, cross platform, cross-technology security policy configuration and control, increasing deployment accuracy and speed while conforming to established workflow processes and reducing operating expenses.CSM 3.2 greatly enhances administrative visibility and control and expands our competitive differentiation with:
Improved CSM – MARS collaboration
Support for desktop switches
Expanded product support: ASA 5580, IOS AIM-IPS, 4270, and more
Scheduled deployment support
Workflow notification enhancementsRead the CSM Data Sheet (http://www.cisco.com/en/US/prod/collateral/vpndevc/ps5739/ps6498/data_sheet_c78-458677-00_ps6498_Products_Data_Sheet.html)
Cisco MARS 6.0
Real-time visibility into the operations of the security infrastructure is necessary to quickly identify and respond to current security risks. This task can overwhelm security administrators as they attempt to examine the intelligence gathered from their environment, determine the threats and calculate the optimized response.Cisco Security MARS increases staff productivity and strengthens the business security posture by analyzing intelligence from Cisco and non-Cisco devices, identifies threats, provides attack visualization and determines the most appropriate mitigation action. The powerful and intuitive report generator assists organizations in meeting operational compliance requirements.CS-MARS 6.0 provides a standard code-base for all platforms and delivers greater value to our customers with:
Standard code base for all platforms
Wireless Controller support
Expanded device support: ASA 8.0, FWSM 3.2, IPS 4270, IPS 6.0, NAC
Open schema for accelerated device support
Community enablement program: Forum for MARS stakeholders
Integration with Trend Damage Cleanup ServiceRead the CS-MARS Data Sheet (http://www.cisco.com/en/US/prod/collateral/vpndevc/ps5739/ps6241/data_sheet_c78-458671.html)
Web Application Firewall
Companies are increasing efficiency and profitably with the implementation of new Web 2.0 and SOA application solutions. Unfortunately, criminals are increasingly exploiting these applications for identity theft, data theft, application disruption, and fraud driving compliance efforts focused on application security as seen with PCI.The Cisco ACE Web Application Firewall provides full compliance with the latest PCI requirements. It combines deep Web application analysis with high-performance XML inspection and management to address the full range of threats associated with Web application services. The result is dramatically reduced business exposure to attacks on modern mission critical applications, protection of sensitive customer and corporate information, and enhanced availability. The Cisco ACE Web Application Firewall provides:
Enhanced enforcement of PCI compliance
Full-proxy firewall
Application access enforcement
HTML and XML traffic inspection
Attack pattern recognition
Human-assisted learning
Policy-based provisioningRead the Web Application Firewall Datasheet (http://www.6200networks.com/wp-content/uploads/docs/SDN/cisco_ace_waf_datasheet.pdf)
Cisco Firewall Services Module 4.0
The volume of information within organizations is increasing exponentially and the need to share information in an increasingly collaborative fashion is driving the need to enable high-speed data transfers between trusted hosts for transactions such as back-ups, grid computing, FTP, imaging and financial trading. Current security mechanisms can be an unnecessary bottleneck for these business critical transactions.Cisco is addressing this growing requirement to enable very high-speed communications between trusted hosts without forgoing security. The Trusted Flow Accelerator (TFA) feature incorporated into FWSM 4.0 establishes a secure connection between trusted hosts, and then suspends per-packet analysis. This allows large volumes of information to be transferred in a secure environment, based on policy, in a fraction of the time. Once the transaction is completed, FWSM closes and secures the connection and reestablishes per-packet analysis between these hosts.FWSM Trusted Flow Acceleration (FTA) enables:
10+ Gbps throughput per flow
20-50 Gbps aggregate throughput
IOS Router Security
Customers are seeking ways to increase the protection of their users, business environment and enable new business initiatives while maximizing their infrastructure investments to reduce cost of operations. The security innovations on the industry-leading router portfolio include:
Cisco IOS Content Filtering
(http://www.6200networks.com/wp-content/uploads/docs/SDN/cisco_ios_content_filtering_datasheet.pdf)Reputati on-based filtering: prevent adware, spyware, malicious sites
Category filtering: prevent connectivity to improper sites
Keyword Blocking, White/Black list support
SIP Protection for Secure Unified Communications
GET VPN support on 7200 VSA with 300% performance improvement (http://www.cisco.com/en/US/products/ps7332/index.html)
Summary
Cisco provides businesses the necessary solutions to address their most challenging security issues through comprehensive solutions for network, endpoint, content and application security with integrated management. Whether preventing data loss, defending against botnets, or meeting corporate and regulatory compliance requirements, the Cisco Self Defending Network delivers the security platform for your business.
Chúc mọi người vui !!!!