 |
 |
|
Cisco Network Security Directory - PBM IT Solutions - Call (888) 233-6471
Cisco Network Security Shop FAQThe Cisco Self-Defending Network is the Cisco long-term strategy to secure business processes by identifying, preventing, and adapting to both internal and external threats. The Cisco Self-Defending Network protects businesses today and adapts to future needs. With Cisco, businesses can protect not only their networks, but also their network investments. The results are improved business processes and substantial savings. A Cisco Self-Defending Network has three unique characteristics: integration, collaboration, and adaptability. First, it integrates security into all elements in the network, ensuring every point in the network can defend itself from both internal and external threats. Second, these network elements work together to exchange information to provide additional protection. Third, the network uses innovative behavioral recognition to adapt to new threats as they arise. The Cisco Secure Network Foundation is a simplified yet comprehensive, cost-effective security solution for small and medium-sized businesses that creates reliable and self-defending networks. Cisco IronPort Security Management Appliances (1) Simplifiy security management across Cisco IronPort email and web security products, (2) Deliver centralized reporting, message tracking, and spam quarantine for the email security appliances, (3) Provide centralized web policy management for web security appliances, and (4) Allow for delegated administration of web access policies and custom URL categories. Cisco AnyConnect Secure Mobility Solution (1) Provides an intelligent, smooth, and reliable connectivity experience, (2) Is ideal for companies that want to give users a choice of how, when, where, and on what device they access their information, (3) Cisco AnyConnect Version 2.5, with ASA 5500 Series Adaptive Security Appliances at the headend, provides remote-access connectivity policy enforcement that is context-aware, comprehensive, and preemptive, and (4) Cisco IronPort S-Series Web Security Appliances apply context-aware policy, including enforcing acceptable use and protection from malware for all users. nFX Cinxi One offers you a new, cost-effective approach to security and compliance. Cinxi combines complete log management capabilities with powerful correlation technology, real-time monitoring, and an integrated incident response system, all on one appliance. Cinxi offers organizations of all sizes: (1) In-depth, real-time visibility into your security and compliance posture, (2) Unparalleled speed and performance, (3) Prioritized threat identification, alerting, and remediation guidance, (4) Comprehensive, automated log management reporting for compliance and audit, (4) Extensive on-board log storage with fast access to your event logs, and (5) A simple-to-deploy and easy-to-use solution, all at a fraction of the cost of other products. An active attack is one in which an unauthorized change of the system is attempted. This could include, for example, the modification of transmitted or stored data, or the creation of new data streams. Sub-categories are (1) masquerade or fabrication, (2) message replay, (3) message modification and (4) denial of service or interruption of availability. Use caution when testing. Certain types of testing, including network scanning, vulnerability testing, and penetration testing, can mimic the signs of attack. It is imperative that testing be done in a coordinated manner, with the knowledge and consent of appropriate officials. Look at the big picture. The results of routine testing may indicate that an organization should readdress its systems security architecture. Some organizations may need to step back and undergo a formal process of identifying the security requirements for many of its systems, and then begin a process of reworking its security architecture accordingly. This process will result in increased security inefficiency of operations with fewer costs incurred from incident response operations. A one-time password (OTP) is a password that is only valid for a single login session or transaction. OTPs avoid a number of shortcomings that are associated with traditional (static) passwords. The most important shortcoming that is addressed by OTPs is that, in contrast to static passwords, they are not vulnerable to replay attacks. This means that, if a potential intruder manages to record an OTP that was already used to log into a service or to conduct a transaction, he will not be able to abuse it since it will be no longer valid. The Cisco Intrusion Prevention System (1) Identifies, classifies, and stops malicious traffic, including worms, spyware, adware, viruses, and application abuse, (2) Delivers high-performance, intelligent threat detection and protection over a range of deployment options, (3) Uses reputation filtering and global inspection to give businesses actionable intelligence and prevent threats with confidence, and (4) Promotes business continuity and helps businesses meet compliance needs. The configuration files tend to be hundreds of pages long, and full of confidential information such as passwords, and addresses. The solution here is to ask network administrators to provide output of a script or single command after removing confidential information. This way, the auditor doesn't need to read through a long printout, and can focus only on important information. |
