Cisco's vision for delivering protection against evolving network and physical security threats is the Cisco Self-Defending Network strategy.
In the past, network based attacks from internal and external sources were relatively slow-moving and easy to defend against. Today, "day zero" worms and viruses spread across the world in a matter of minutes, meaning security systems must react instantly and automatically.
Moreover, threats today may contain a physical security element, such as an individual entering a building and then gaining unauthorized network access.
A security system fully integrated into all aspects of the network and providing physical security controls allows the network and its managers to proactively recognize potential suspicious activity, identify threats, react appropriately, isolate infections, and facilitate a coordinated response to attacks.
The Cisco Self-Defending Network strategy is the Cisco converged vision for integrated network security. Only Cisco offers a unique, systemic approach to business security based on the intelligent collaboration of networking and security technologies and services.
Cisco Technology Developer Partner Security solutions complement and extend the Self-Defending Network strategy. These solutions include:
Network and Endpoint security solutions such as anti-virus, content filtering, anti-spam, instant messaging protection, identity management and network-wide security monitoring
Physical security solutions such as access control, video analytics, IP cameras, video storage, video display systems, sensor technologies and video surveillance front end applications
Together these two classes of Cisco Technology Developer Partner Security solutions extend the multi-layer, self-defending and intelligent characteristics of a secure network environment.
With the Self-Defending Network strategy providing the foundation for secure, resilient and scalable networks, Cisco Technology Developer Partner Security solutions interoperate with Cisco security products such as:
Cisco ASA 5500 Series Adaptive Security Appliance (ASA)
Cisco VPN 7200, 7300, 7600 Series Routers
Cisco 1800, 2800 and 3800 Series Integrated Services Routers (ISR)
Cisco Security Agent (CSA)
Cisco Security Monitoring, Analysis and Response System(CS-MARS)
Cisco Secure Intrusion Detection and Protection Systems
Cisco Incident Control System (ICS)
Cisco PIX Security Appliance
Cisco VPN 3000 Series Concentrator
Cisco Catalyst 6500 Switch with VPN, IDS, SSL and Firewall Services Module
Cisco Guard DDos Mitigation Appliance
Cisco Access Control Server (ACS)
Cisco Works Security Information Management Solution (CW-SIMS)
Cisco Video Surveillance IP Gateways
Cisco Video Surveillance Service Platforms
Cisco Video Surveillance Integrated Service Platforms
Cisco Video Surveillance Stream Manager software
Integration Interface Technology
Cisco Technology Developer Partner Security solutions leverage open standards, protocols, and published interfaces. Third-party interoperability is based on the following standards:
Authentication protocols such as RADIUS and TACACS+
Encryption technology such as the Data Encryption Standard (DES), Diffie-Hellman key exchange, and the Digital Signature Standard (DSS)
IPsec and SSL to ensure data privacy, integrity, and authenticity
Published interfaces for real-time intrusion detection
Layer 2 Tunneling Protocol (L2TP) provides standard Access VPN connectivity for multiprotocol environments and operates on IP frame networks
The Cisco video surveillance API and SDK
Network and Endpoint Security Solution Categories
Focused on securing critical business functions such as e-commerce, remote access, intranets and extranets, Cisco Technology Developer Security partners offer solutions for:
Identity
Identification of network users, hosts, applications, services, and resources using standard authentication protocols such as RADIUS, TACACS+ and Kerberos, and one-time password tools.
Benefits include:
Positive user and device authentication and authorization
Network, system, and data protection
User transaction integrity
Application Security
Detection of suspicious application-level vulnerabilities. Includes email, spam and Instant Messaging protection.
Benefits include:
Host application and operating system protection
Business loss avoidance by reducing security breaches
Maximum uptime for Internet services and web applications
Perimeter Security
Controlled access to critical network applications, data, and services, allowing legitimate users and information to pass through the network. Includes content filtering, malicious code filtering and DDos protection.
Benefits include:
Comprehensive perimeter control
Integrated virus protection and content management
Bandwidth savings by managing access to authorized activities
Security Management and Monitoring
Tools to proactively detect security weaknesses, perform real-time network-based intrusion detection, and configure, monitor, and administer security policy. Includes event correlation/aggregation, vulnerability assessment, multi-vendor management and reporting/monitoring.
Benefits include:
Network-wide security provisioning
Identification and elimination of unauthorized activity
Real-time event notification, analysis, and reporting
Secure Connectivity
Connectivity to Cisco VPN gateway products using standard security protocols such as IPsec, SSL and L2TP.
Benefits include:
Maximum security using tunneling and encryption
Communication expense reduction for remote users
Scalability for existing network capacity
Physical Security Solution Categories
Focused on providing network-connected physical security, Cisco Technology Developer Partners in Physical Security offer the following categories of solutions:
Video Analytics
Applications which analyze live and recorded video for events
Benefits include:
Analysis of live and post event video data for proactive incident control
Reuse of live and recorded video for merchandizing and other value add applications
IP Cameras
Video cameras which connect to the IP network
Benefits include:
Cost effective solution, with integrated network connectivity
Simplified camera deployment
Open, standards based approach
Storage
Systems for storing and archiving video data
Benefits include:
Scalable and cost effective solution
Centralized and distributed architectures to meet system requirements
Enhanced availability through data mirroring and archiving
Display systems
Systems for displaying live and recorded video
Benefits include:
Display systems for all price points and levels of functionality
Video Monitors and monitor walls
Front-end applications
Applications which integrate with and enhance the video surveillance and physical security system
Benefits include:
Enhanced Security through integration with external event data
Reuse of video infrastructure to support additional applications
Integration with transactions, such as generated by Point of Sale systems
Sensor Technologies
Systems that identify events and transmit event data to the video surveillance and physical security system
Benefits include:
Integration of glass break, pressure pad, infra red and multi technology sensors into a single unified security system
Simplified configuration, management and policy control
Access Control
Network-connected systems that control physical access to secured locations
Benefits include:
Reduced physical installation complexity
Facilitates advanced access control
Enforces compliance with both physical access and logical security polices
