Cyber Security and Cisco
Cisco faces cyber attacks to its global operations on a continual basis and has created this paper to share a multi-layered approach to cyber defence with our Public Sector partners.
Cyber Security and Cisco: Assuring Government IT Services
Malicious attacks on Government IT systems can cause havoc - with citizens suffering as a result of lost or impaired services. Cyber-attacks often make use of computer networks to propagate. Attacks can cause severe harm to Government business processes and systems, and because they can be introduced by attackers overseas, they can be difficult to control - and can spread quickly.
The Government takes the cyber threat very seriously:
"As Foreign Secretary I see frequent evidence of deliberate and organised attacks against intellectual property and Government networks in the United Kingdom." (William Hague, UK Foreign Secretary, Speech at the Budapest Conference on Cyberspace, October, 2012).
Cisco, as a major multi-national computer networking provider, faces cyber-attacks to its global operations on a constant basis. It has built considerable expertise and works with customers - including our Government customers worldwide - to defend against and mitigate the effects of cyber-attacks.
Our Commitment to Reducing the Cyber Threat
At the heart of our commitment to supporting the UK Government is the Public Services Network (PSN). The PSN aims to transform how services are delivered to citizens - and it must meet Cabinet Office defined standards for information assurance (CESG PEPAS).
Cisco ISR G2 and ASR 1000 Series routers have successfully completed and passed CESG PEPAS evaluation. The PEPAS assurance scheme was developed to address the information assurance requirements for cryptography to deliver network solutions for secure information exchange within the PSN. Therefore Cisco technology - at the core of PSN - delivers secure wide area network and virtual private network services to Government departments and local authorities.
Further information about Cisco's commitment to the UK Government's network security standards can be found here in this blog post.
The Cisco ISR G2 and ASR 1000 Series routers have been successfully certified under the CESG Commercial Product Assurance scheme (CPA) against the IPsec VPN Gateway security characteristic. CPA is a new CESG product assurance scheme designed to provide confidence to data owners that that products will perform their stated security functions in lower threat environments. CPA replaces a number of existing schemes and combines them in to a single certification suitable for the protection of 'OFFICAL' data (under the new UK Government Security Classification scheme).
Operating procedures detailing the secure deployment of the Cisco ISR G2 and ASR 1000 can be found on the CESG IA Policy Portfolio or can be obtained through CESG Enquiries. In addition, more detailed guidance has been produced providing our customers with a baseline configuration for operating these platforms in an approved fashion
Assuring the Cloud
Information technology promises to deliver new services to citizens enabled by cloud technology. The cloud provides a much more flexible way to deliver more information and services within Government itself - and also to citizens.
Cisco believes that the borderless Government networks - that provide much more fluid and responsive business processes - should be protected from malware and malicious attacks. That's why we offer the Cisco ScanSafe Web Security solution - to ensure that secure connection to the web is always on offer.
Secure and Modern ICT Environments within Government
Our paper, Cyber Security Solutions for the Public Sector, sets out Cisco's recommendations on best practice for securing government ICT environments. We recommend an approach that makes the network itself a 'security sensor' - as well as a layered approach to public sector ICT security.
Please click here to download a copy of 'Cyber Security Solutions for the Public Sector'.
Links to Other Resources
PEPAS certification of the Cisco ISR G2 and ASR1000
Find out more »