SAFE
Simplify Security with SAFE
This overview of SAFE will show you how to map security capabilities to threats. (PDF – 6 MB)
How to Use SAFE
Cisco and our Partners can help you align your business and security priorities with a SAFE Workshop.
-
Easy-to-Use Security Reference Architecture
SAFE can help you simplify your security strategy and deployment. This Cisco security reference architecture features easy-to-use visual icons that help you design a secure infrastructure for the edge, branch, data center, campus, cloud, and WAN. The framework encompasses operational domains such as management, security intelligence, compliance, segmentation, threat defense, and secure services.
SAFE solutions have been deployed, tested, and validated at Cisco and provide guidance, best practices, and configuration steps.
Why complicate your security network design? Keep it simple with SAFE.
The SAFE Key
The SAFE Key organizes security by using two core concepts: Places in the Network (PINs) and Secure Domains.
PINs reference examples of locations that are found in networks and the infrastructure needed to create them:
- Data center
- Branch
- Campus
- WAN
- Internet edge
- Cloud
Secure Domains are operational areas used to protect these locations. They are security concepts that traverse an entire network:
- Management
- Security intelligence
- Compliance
- Segmentation
- Threat defense
- Secure services
How SAFE Works
This Interactive SAFE Poster shows you how the model works to protect your network.
The Latest in Thought Leadership
The SAFE blog brings you best practices in network security architecture and design.
-
This reference architecture logically arranges capabilities to secure business workflows against threats.
- Trusted Internet Connections (TIC) 3.0 - Branch Architecture Guide (PDF - 9.3 MB)
- Trusted Internet Connections (TIC) 3.0 - Remote Worker Architecture Guide (PDF - 2.7 MB)
- SAFE Secure Branch Architecture Guide (PDF - 1.7 MB)
- SAFE Secure Campus Architecture Guide (PDF - 2 MB)
- SAFE Secure Cloud Architecture Guide (PDF - 3.3 MB)
- SAFE Secure Data Center Architecture Guide (PDF - 3.7 MB)
- SAFE Secure Internet Architecture Guide (PDF - 2.6 MB)
- SAFE Secure Internet Edge Architecture Guide (PDF - 2.9 MB)
- SAFE Secure Segmentation Operations Guide (PDF - 2.2 MB)
- Trusted Internet Connections (TIC) 3.0 - Branch Architecture Guide (PDF - 9.3 MB)
-
SAFE design guides have been tested, validated, and deployed at Cisco. They provide best practices, configuration steps, and more.
Secure Remote Worker Design Guide for Azure - July 2020 (PDF - 9.8 MB)
SAFE Secure Cloud for Azure - July 2020 (PDF - 13.1 MB)
SAFE Secure Data Center Design Guide – June 2020 (PDF - 34.1 MB)
Secure Remote Worker Design Guide - April 2020 (PDF - 2.81 MB)
SAFE Secure Cloud for AWS - Design Guide - April 2020 (PDF - 30.5 MB)
SAFE Edge Remote Access VPN with DDoS Design Guide – September 2016 (PDF - 4.6 MB)
Ransomware Defense Design Guide – August 2017 (PDF - 6.2 MB)
IoT Threat Defense for Manufacturing SAFE Design Guide – May 2018 (PDF - 8.6 MB)
SAFE Secure Cloud Protect Design Guide - February 2018 (PDF - 2 MB)
-
- Cisco Design Zone for Security
- Cisco Compliance Solutions with Cisco Validated Designs
- Cisco Security Ransomware Solution
- Cisco Security IOT Threat Defense Solution
- Cisco Security Secure Data Center Solution
- Cisco ACI Multi-Site Architecture White Paper
- Cisco ACI Policy-Based Redirect Service Graph Design White Paper
- Cisco FMC Remediation Module for ACI, Version 1.0.1 Quick Start Guide (PDF - 1.84 MB)
- Cisco Hyperflex Hardening Guide 3.0 (PDF - 1.9 MB)
-
SAFE Toolkit
The SAFE Toolkit includes the elements required to facilitate security discussions. You can use the items on these slides to build presentations using SAFE best-practice illustrations and diagrams. And you can customize the diagrams to suit your business.
- SAFE Security Architecture Toolkit - August 2019 (PPT - 11.3 MB)
- SAFE Security Architecture Toolkit for Visio - May 2020 (ZIP - 1.8 MB)
Contact Cisco
- Call 1-800-553-6387
- US/CAN | 5am-5pm PT