Security Associate Program

Security Products and Technologies

Cisco Solutions

Security Products and Technologies
Cisco Secure PIX
    Firewall
Cisco IOS Firewall
Cisco Secure Intrusion
   Detection System
Cisco Secure Scanner
Cisco Secure Access
   Control Server
Cisco Secure Policy
    Manager
Cisco Secure
  Consulting Services
Cisco AVVID Partner
   Program
   Security & VPN
   Solutions
Virtual Private
     Networks
VPN Client
VPN 3000
    Concentrator
Remote Access VPN
Site-to-Site VPN
Authenication
Encryption

Successfully using Internet technologies requires an increased need to protect valuable data and network resources from corruption and intrusion. Cisco's security solution is comprised of five key elements:

Identity
Identity is the accurate and positive identification of network users, hosts, applications, services, and resources. Standard technologies that enable identification include authentication protocols such as RADIUS and TACACS+, Kerberos, and one-time password tools. New technologies such as digital certificates, smart cards, and directory services are beginning to play increasingly important roles in identity solutions.
Perimeter Security
This element provides the means to control access to critical network applications, data, and services so that only legitimate users and information can pass through the network. Routers and switches with access control lists and/or stateful firewalling, as well as dedicated firewall appliances provide this control. Complementary tools, including virus scanners and content filters, also help control network perimeters.
Data Privacy
When information must be protected from eavesdropping, the ability to provide authenticated, confidential communication on demand is crucial. Sometimes, data separation using tunneling technologies, such as generic routing encapsulation (GRE) or Layer 2 Tunneling Protocol (L2TP), provides effective data privacy. Often, however, additional privacy requirements call for the use of digital encryption technology and protocols such as IPSec. This added protection is especially important when implementing VPNs.
Security Monitoring
To ensure that a network remains secure, it's important to regularly test and monitor the state of security preparation. Network vulnerability scanners can proactively identify areas of weakness, and intrusion detection systems can monitor and respond to security events as they occur. Using security monitoring solutions, organizations can obtain unprecedented visibility into both the network data stream and the security posture of the network.
Policy Management
As networks grow in size and complexity, the requirement for centralized policy management tools grows as well. Sophisticated tools that can analyze, interpret, configure, and monitor the state of security policy, with browser-based user interfaces, enhance the usability and effectiveness of network security solutions.

These elements enable dynamic links between customer security policy, user or host identity, and network infrastructures.

Standards and Certification

Cisco IOS Firewall Feature Set
The Cisco IOS Firewall offers sophisticated perimeter security and policy enforcement for intranets and extranets (between partner networks).

Encryption
Ensures secure private communications over the Internet.

Cisco Secure PIX 500 Firewalls
The Cisco Secure PIX Firewall provides full firewall protection that completely conceals the architecture of an internal network from the outside world.

Managed Security Services
Corporations of all sizes are concerned with the challenges of managing a security and VPN infrastructure. Two programs and support from the VPN and Security Business Unit (VSEC) are described here.

Cisco AVVID Program Security and VPN Solutions
The Security and VPN Solutions Set within the Cisco AVVID Partner Program is an interoperability solutions and co-marketing program developed to deliver comprehensive security solutions for Cisco networks that build on the strengths of Cisco's security product line.

Cisco Secure Consulting Services
Cisco Secure Consulting Services (formerly Cisco Security Consulting Services) provides comprehensive network security analysis and restoration.

Small/Medium Security Solutions
Cisco security solutions support five key elements: Indentity, Perimeter Security, Data Privacy, Security Monitoring, and Policy Management.

Cisco Secure Software

Authentication
Uniquely and accurately identify users, applications, services, and resources.

Brochures

Securing Your Business Network: Cisco Secure Solutions
Describes how Cisco Secure products, services, and network security solutions can allow customers to safely take advantage of new Internet business opportunities and gain competitive advantage.

Product Bulletins

Cisco 2621 Security Policy, No. 1112
The IOS IPSec implementation has been certified to meet FIPS 140-1 Level 2 requirements. This document details the security policy that must be followed to maintain compliance with the FIPS 140-1 requirements.

Certificate Authority Support for IPSec Overview
Describes digital certificates and how they relate to IPSec. Including the vendors participating with Cisco and the standards supported.

Profiles

Project ACHIEVE

Technology Documentation

Design Implementation Guides

Additional Information

Encryption Ordering