Have an account?

  •   Personalized content
  •   Your products and support

Need an account?

Create an account

Available Languages

Download Options

  • PDF
    (632.9 KB)
    View with Adobe Reader on a variety of devices
Updated:February 19, 2019

Available Languages

Download Options

  • PDF
    (632.9 KB)
    View with Adobe Reader on a variety of devices
Updated:February 19, 2019
 

 

Cisco Crosswork Trust Insights is a cloud service that provides signed and encrypted system integrity information to track the trust posture of the network hardware and software components.

Network infrastructure security issues can be caused by malicious actions or simple procedural errors. These events can have unforeseen effects on the integrity of your network and business model. System integrity is the foundation of trustworthiness and a compromise can expose attack surface for cyber-attacks. Network operators need a scalable analytic toolset to detect integrity issues and provide verifiable evidence to act promptly on it. The security event data provided by networks today is plentiful, but the existing toolsets are unable to validate the device’s integrity. Device trust posture can be difficult to verify when not combined with critical system knowledge provided by the manufacturer. Cisco has industry-leading expertise designing trustworthy technologies with multilayered security into our platforms.

Cisco® Crosswork Trust Insights is a hosted service that provides intuitive visualization, rich analytics, and alerts on actionable device integrity events. It empowers you with visibility to help assess the integrity and affirm trust in your network routing infrastructure. It aggregates hardware and software signature information from your network devices and gathers evidence to validate if the hardware is authentic and running software maps to published known good values (KGVs). The service enables you to take maximum advantage of the trustworthy technologies baked into the Cisco platforms and implement operational best practices to collect and validate changes in system integrity information.

Cisco Crosswork Trust Insights service establishes a secure communication channel with the devices in your network utilizing Cisco Crosswork Data Gateway. The mechanism allows secure exchange of information required to onboard the network devices and collect verifiable evidence to monitor their trust posture. Cisco Crosswork Data Gateway is deployed on premises as a common multi-service collector with integrated data policy controls. The data policy allows you to whitelist access to router management policy and cloud services.

Feature and Benefits

Feature

Benefit

Cloud-delivered

Reduce time to value with easy ordering, provisioning, and setup.

Adopt new releases and innovation in an effortless manner.

Facilitate integration with other systems through open APIs.

Software as a Service (SaaS)

Build and maintain confidence with “always-on” monitoring.

Reduce technical and operational overhead required to set up, operate, and maintain servers and software.

Leverage seamless flexibility to add capacity, scale, and features, securely and reliably, to align with your business objectives.

Cryptographically secured evidence of system integrity and changes

Affirm trust in network infrastructure by gathering evidence to verify if the hardware is authentic and running software maps to published known good values (KGVs).

Track changes to system integrity measurements.

Intuitive dashboard

Get a glance into observed hardware and software changes; contextually navigate deeper to analyze the behavior and assess the impact.

System integrity evidence analysis

Validate trust posture for network devices by regularly observing any system hardware and software changes and validating if the changes were as planned and conform to manufacturer guidelines.

Analyze run-time software changes to investigate what they are, when they happened, and which devices were affected.

Expedite resolution by assessing the change behavior, such as if a similar change was observed in the past or if the change occurred concurrently across multiple devices.

Historical archive of system changes

Establish traceability for forensic and causal analysis.

Notification of observed system changes

Accelerate mean time to know (MTTK) by subscribing to system change notifications. Mechanisms include email, SMS, and structured syslog to cloud file storage.

Immutable secure storage of evidence

Ease compliance checks while safeguarding against evidence tampering.

Secure connection from network devices to the cloud

Establish secure cloud tether using Cisco Crosswork Data Gateway deployed on premises in your network.

Subscription pricing

Lower upfront CapEx and overall total cost of ownership (TCO).

API framework

Integrate with existing applications or support new use cases with easy-to-use REST / JSON APIs. Use case examples include:

●  Validate software changes as part of an automation playbook
●  Use alarm events to trigger automation playbooks

Multi-tenant platform

Utilize a feature-rich multi-tenant platform with Role-Based Access Control (RBAC), secure storage, and Cisco.com Federated One Identity for easy access, and enterprise single sign-on (SSO) with Federated Identity to reduce user support and onboarding.

Prominent feature/Differentiator/Capability

Build and Maintain Trust with Secure Evidence

Cisco Crosswork Trust Insights is Cisco’s first cloud-based service that presents continuous and verifiable network device integrity information. It uses secure data exchange protocols in combination with a cloud-native architecture to continuously monitor changes to device trust posture. In addition, the service takes advantage of its deeper knowledge of Cisco network devices to provide a comprehensive view of device inventory and changes in system integrity measurements.

Cisco is committed to continually enhancing the security and resilience of our networking solutions. Crosswork Trust Insights uniquely leverages built-in trust technologies. For example, it utilizes the cryptographic identity as part of a trust anchor for the validation of information collected from the device. In addition, the service provides an independent and secure offsite repository of system integrity information.

Cisco Crosswork Trust Insights delivers the critical consumer experience component as part of Cisco Trust Anchor technology evolution.

Improve Operational Efficiency

Cisco Crosswork Trust Insights helps to detect and analyze any change in system integrity measurements. As a result, it significantly reduces the mean time to know (MTTK; see Figure 1) when a security event occurs. Operators can subscribe to such change notifications to help accelerate time to action. The service is built to communicate and alert on issues using new collaboration media platforms and legacy methods such as email. These collaborative tools help network operation teams efficiently coordinate their efforts to resolve issues. The framework is also expected to support integration with third-party plug-ins to facilitate collaboration. Efficiency can be further improved with alarms to trigger automation playbooks to implement remediation actions.

datasheet-c78-741972_0.jpg

Figure 1.            

Accelerate Time to Action

Deploy to Scale

Cisco Crosswork Trust Insights is designed to cost-effectively manage very large-scale service provider data sets. It utilizes the feature-rich Cisco Crosswork Cloud Service Infrastructure (see Figure 2). The architecture is capable of tracking millions of signature value pairs while maintaining their historical information. It delivers a solution that is flexible, resilient, and secure.

datasheet-c78-741972_1.jpg

Figure 2.            

Crosswork Trust Insights Leverages the Robust Cisco Cloud Service Infrastructure

In summary, Cisco Crosswork Trust Insights is for anyone who needs to understand the trust posture of their network routers by tracking and analyzing changes that may potentially expose attack surface. The service will continue to evolve, providing organizations the capability to protect and monitor the trust posture of their network assets.

Ordering Information

For queries related to ordering information and to learn more, contact your Cisco account representative.

Cisco Services

Cisco offers a wide range of services to help accelerate your success in connecting to Cisco Crosswork Trust Insights. The innovative Cisco services offerings are delivered through a unique combination of people, processes, tools, and partners and are focused on helping you increase operational efficiency and improve your network control. The Cisco Customer Experience team uses an architecture-led approach to help you align your network infrastructure with your business goals and achieve long-term value.

Cisco Crosswork products can be combined with Cisco SMARTnet Service to help you resolve mission-critical problems with direct access at any time to Cisco network experts and award-winning resources. Spanning the entire network lifecycle, Cisco services offerings help increase investment protection, optimize network operations, support migration operations, and strengthen your IT expertise. For more information, visit https://www.cisco.com/go/services.

Cisco Capital

Flexible Payment Solutions to Help you Achieve your Objectives

Cisco Capital makes it easier to get the right technology to achieve your objectives, enable business transformation and help you stay competitive. We can help you reduce the total cost of ownership, conserve capital, and accelerate growth. In more than 100 countries, our flexible payment solutions can help you acquire hardware, software, services and complementary third-party equipment in easy, predictable payments. Learn more.

Learn more