Chapter 2: Security Strategy and Cisco Borderless Network
Summary
In this chapter, you learned about the Cisco Borderless Network Architecture. This chapter examined the Cisco Security portfolio of products and, more specifically, reviewed the following:
• Cisco SecureX Architecture (at a high level), highlighting its features and benefits and providing examples of Cisco products that fall within this category
• Cisco threat control and containment products and technologies, such as the Cisco ASA and Cisco IPS, and illustrating their high-level features and benefits
• Cisco content security and data loss prevention technologies, such as Cisco IronPort WSA and ESA, and illustrating their high-level features and benefits
• Cisco VPN solutions and technologies, and illustrating their high-level features and benefits
• The different security management products and technologies, focusing at a high level on Cisco Security Manager
24 trang |
Chia sẻ: vutrong32 | Lượt xem: 1052 | Lượt tải: 0
Bạn đang xem trước 20 trang tài liệu Chapter 2: Security Strategy and Cisco Borderless Network, để xem tài liệu hoàn chỉnh bạn click vào nút DOWNLOAD ở trên
Security Strategy and Cisco Borderless NetworkIn this chapter, you learn about the following Cisco Borderless Networks topics:• Cisco Borderless Network Architecture• Cisco security portfolio of products solving issues of Borderless Networks• Cisco SecureX Architecture presenting its features and benefits• Cisco threat control and containment products and technologies• Cisco content security products and technologies• Cisco VPN solutions and technologies• Security management products and technologies Borderless NetworksCisco Borderless Network Security ArchitectureBorderless End ZoneBorderless InternetIntelligent Access Policies Provides Context Awareness for Adaptive Securing of EndpointsBorderless Data CenterEvolution of Security in the Data CenterPolicy Management LayerBorderless Security ProductsPolicy Management Provided by Cisco Borderless Security ProductsSecureX, a Context-Aware Security ApproachSecureX Context AwarenessCisco SecureX Security ProductsContext-Aware PoliciesContext-Aware Policies Decide Access PrivilegesTrustSecSecure Resources Using TrustSecAnyConnectAnyConnect at WorkCisco Identity Services Engine (ISE) is the centralized policy engine for business-relevant policy definition and enforcement.Cisco ISE complements global contextual information that is offered by Cisco SIOCisco ISE combines the functionality of other Cisco products, such as the Cisco Secure Access Control Server for authentication, authorization, and accounting (AAA) services and Cisco NAC, into this next-generation policy server.Cisco Identity Services EngineCisco ASA : provide proven firewall services and context- and application-aware capabilities for comprehensive, real-time threat defenseCisco ISR : Through software- and hardware-integrated security functions, ISRs can easily become part of the army of security controls in networks of all kindsCisco IPS : Intrusion prevention is accomplished in a distributed fashion, from IPS 4200 appliances to integrated hardware modules such as the Advanced Inspection and Prevention Security Services Module (AIP-SSM) for ASA or the Intrusion Detection Services Module (IDSM) for Cisco Catalyst 6500Threat Control and Containment• Threat intelligence, which is called Cisco SensorBase• The automatic and human development process, called the IronPort Threat Operations Center• The automated and best practices content that is pushed to network elements in the form of dynamic updatesCisco Security Intelligence Operation• Abuse and nefarious use of cloud computing• Insecure interfaces and APIs• Malicious insiders• Shared technology issues• Data loss or leakage• Account or service hijacking• Unknown risk profileCloud Security, Content Security, and Data Loss PreventionWeb SecurityScanSafe Integration with Cisco AnyConnectWeb SecurityCisco IronPort WSA on PremisesEmail SecurityCisco IronPort Email Security SolutionsSecure Connectivity Through VPNsVPN Deployment OptionsDevice managersCisco Configuration ProfessionalCisco Security ManagerSecurity ManagementIn this chapter, you learned about the Cisco Borderless Network Architecture. This chapter examined the Cisco Security portfolio of products and, more specifically, reviewed the following:• Cisco SecureX Architecture (at a high level), highlighting its features and benefits and providing examples of Cisco products that fall within this category• Cisco threat control and containment products and technologies, such as the Cisco ASA and Cisco IPS, and illustrating their high-level features and benefits• Cisco content security and data loss prevention technologies, such as Cisco IronPort WSA and ESA, and illustrating their high-level features and benefits• Cisco VPN solutions and technologies, and illustrating their high-level features and benefits• The different security management products and technologies, focusing at a high level on Cisco Security ManagerSummary
Các file đính kèm theo tài liệu này:
- chapter_2_security_strategy_and_cisco_borderless_network_5491.pptx