Cisco Delivers Adaptive Threat Defense Across Security Product Portfolio.SAN JOSE San Jose, city, United States San Jose (sănəzā`, săn hōzā`), city (1990 pop. 782,248), seat of Santa Clara co., W central Calif.; founded 1777, inc. 1850. , Calif. -- New Intrusion Prevention See IPS and IDS. , Application Firewall, SSL (Secure Sockets Layer) The leading security protocol on the Internet. Developed by Netscape, SSL is widely used to do two things: to validate the identity of a Web site and to create an encrypted connection for sending credit card and other personal data. VPN (Virtual Private Network) A private network that is configured within a public network (a carrier's network or the Internet) in order to take advantage of the economies of scale and management facilities of large networks. , and Endpoint Security Innovations Deliver Advanced Protection of Business-Critical Resources Cisco Systems “Cisco” redirects here. For other uses, see Cisco (disambiguation). Cisco System,Inc. (NASDAQ: CSCO, HKSE: 4333 ) is an American multinational corporation with 54,000 employees and annual revenue of US $28.48 billion as of 2006. , Inc. (Nasdaq:CSCO CSCO Cisco Systems Incorporated (stock symbol) CSCO Chief Supply Chain Officer ), today announced the addition of over 10 new products, software enhancements, and services across its market-leading security product portfolio. These new offerings deliver more proactive and broader protection from a wider variety of network and business-application threats. The extent of these new product offerings underscores the evolution of the Cisco Self-Defending Network security strategy through Adaptive Threat Defense (ATD ATD Anthropomorphic Test Dummy ATD Attention to Detail ATD Advanced Technology Demonstration AtD Achieving the Dream ATD Atmospheric Technology Division (US National Center for Atmospheric Research) ATD Assistant Technical Director ), an innovative architecture that increases security effectiveness via three major components; Anti-X defenses, Application security, and Network control and containment. (See related announcement "Cisco Takes Self-Defending Network Strategy to a New Level" http://newsroom.cisco.com/dlls/2005/prod_021505.html) "Securing today's networks and applications requires the highest levels of proactive and coordinated threat protection and is a critical aspect of the Cisco Self-Defending Network security strategy," said Jayshree Ullal, senior vice president of the Cisco Security Technology Group (STG stg abbr (= sterling) → ester ). "Today's announcement highlights Cisco's ability to deliver innovative security extensions across multiple products and platforms which provide customers with Adaptive Threat Defense (ATD) across their business networks and applications." Cisco is delivering new products and technology enhancements across multiple areas of ATD that include Anti-X defenses, Application security, and Network control and containment. Products and enhancements include: Anti-X Defenses The Cisco Intrusion Prevention System (IPS) Version 5.0: Solutions deliver a new generation of highly accurate and intelligent in-line prevention services complemented by new network anti-virus, anti-spyware and worm mitigation capabilities for improved threat defense across multiple form factors including appliances, switch-integrated modules, and Cisco IOS Cisco IOS (originally Internetwork Operating System) is the software used on the vast majority of Cisco Systems routers and all current Cisco network switches. IOS is a package of routing, switching, internetworking and telecommunications functions tightly integrated with a (R) Software-based solutions offering up to 7 gigabits per second of performance. The Cisco Anomaly Guard Module and Cisco Traffic Anomaly A deviation from the normal traffic pattern. An intrusion detection system (IDS) may look for unusual traffic activities, such as a flood of UDP packets or a new service appearing on the network. Detector Module for the Cisco Catalyst(R) 6500 Series switches and Cisco 7600 Series routers: Version 4.0 of this distributed denial of service A condition in which a system can no longer respond to normal requests. See denial of service attack. (DDoS) behavior-based mitigation solution provides new switch-integrated multi-gigabit protection of critical network resources against day-zero DDoS attacks. Cisco Security Agent Cisco Security Agent (CSA) is an endpoint intrusion prevention system made originally by Okena (formerly named StormWatch Agent) , which was bought by Cisco Systems in 2003. (CSA (1) (Canadian Standards Association, Toronto, Ontario, www.csa.ca) A standards-defining organization founded in 1919. It is involved in many industries, including electronics, communications and information technology. ) Version 4.5: Offers malware/spyware protection, enhanced security state or "posture" assessment, location-based policy enforcement, and internationalization The support for monetary values, time and date for countries around the world. It also embraces the use of native characters and symbols in the different alphabets. See localization, i18n, Unicode and IDN. internationalization - internationalisation for enhanced endpoint security. Application Security Secure Sockets Layer (networking, security) Secure Sockets Layer - (SSL) A protocol designed by Netscape Communications Corporation to provide secure communications over the Internet using asymmetric key encryption. (SSL) virtual private network (VPN) services within the Cisco VPN 3000 Concentrator Version 4.7: Provides broadened access to virtually any application with advanced endpoint and malware protection including application-optimization capabilities with the new Cisco Security Desktop application. Cisco PIX History Cisco PIX (Private Internet EXchange) is a firewall originally conceived in March 1994 by John Mayes of Redwood City, California and coded by Brantley Coiles of Athens, Georgia. (R) Security Appliance Security appliances protect computer networks from unwanted data traffic, intruders, email spam, enforce policies, and may also be used to create and manage VPNs. There are a number of types of security appliances. Software Version 7.0: Represents the largest feature release since its initial introduction highlighted by extensive inspection and control over a broad range of HTTP, voice, and IP-based applications. Cisco PIX version 7.0 also introduces a highly flexible security-policy framework providing fine-grain control over individual user-to-application flows. Cisco IPS Version 5.0 and Cisco IOS Software Release 12.3(14)T: Solutions also deliver new application inspection and control capabilities offering enhanced application security for port-80 control and misuse and voice over IP (VoIP) environments. Network Control and Containment Cisco Security Monitoring, Analysis and Response System (CS-MARS CS-MARS Cisco Security Monitoring, Analysis, and Response System ) and Security Auditor: Collectively provide network security event correlation Event Correlation is the processes involved with reducing a large number of incident alerts to a much smaller, more manageable number within automated monitoring and incident/problem management in a Support Management System. and policy auditing for proactive response to unauthorized network access and activity. Virtual firewall capabilities available in Cisco PIX Software Version 7.0 and Cisco IOS Release 12.3(14)T: Expands access control and inspection of networked business resources at a lower cost of ownership. Release 12.3(14)T also includes a new IP Security (IPSec) virtual interface, providing easier and more scalable IPSec VPN management, and enhanced support for Voice and Video over VPN (V3PN V3PN Voice and Video Virtual Private Network (Cisco) V3PN Voice and Video Enabled Vpn ) applications. Network Admission Control (NAC See network access control. ) support in Cisco VPN 3000 Concentrator version 4.7: NAC support for IPSec traffic offers enhanced posture assessment. These products reflect Cisco's commitment to deliver investment protection by enabling customers to significantly enhance the capabilities of their existing systems through simple software upgrades. Highlighted products in this announcement include active intrusion prevention services, SSL VPN, application firewalling and anti-X services, for advanced application and threat protection. Anti-X Defenses with New Advanced IPS Capabilities Cisco IPS version 5.0 delivers an increased level of in-line accuracy to identify and stop more of the threats business applications are facing including worms and viruses, malware/spyware, threats associated with peer-to-peer (P2P See peer-to-peer and point-to-point. ) and instant messaging Exchanging text messages in real time between two or more people logged into a particular instant messaging (IM) service. Instant messaging is more interactive than e-mail because messages are sent immediately, whereas e-mail messages can be queued up in a mail server for seconds or (IM) without impacting legitimate traffic. The new IPS software is supported by Cisco IPS 4200 Series appliances and the Cisco Catalyst 6500 Series and 7600 Series Intrusion Detection System This article is about the computing term. For other uses, see Burglar alarm. An intrusion detection system (IDS) generally detects unwanted manipulations of computer systems, mainly through the Internet. Module (IDSM-2) through a software upgrade to provide industry-leading investment protection. Enhanced in-line IPS functionality available in Cisco IOS version 12.3(14)T increases protection against new classes of threats such as spyware, network anti-virus, and malware associated with IM applications which dramatically improves the ability to prevent and mitigate damage from worm and virus attacks. This new IPS functionality also allows users to create custom signatures to address newly discovered threats for broader protection. SSL VPN Enhancements New SSL VPN capabilities available in the Cisco VPN 3000 Concentrator Version 4.7 includes new Cisco Secure Desktop functionality which helps address SSL VPN endpoint security. The Cisco Secure Desktop provides pre-connection security state or "posture" assessment of the connecting device, security during the session by creating a secure virtual desktop that protects sensitive data, and post-connection clean-up that eliminates all traces of sensitive session information. The Cisco VPN 3000 Concentrator Version 4.7 also includes a new dynamically downloadable Cisco SSL VPN Client, which provides transport for virtually any IP application. The Cisco VPN 3000 Concentrator Version 4.7 also offers fully clientless support for Citrix environments without the need for any SSL VPN client software thereby increasing application performance and reducing endpoint software compatibility issues. Proactive Application Control The new Cisco PIX Software Version 7.0, along with Cisco IPS software version 5.0, and Cisco IOS Release 12.3(14)T, now offer support for application firewalling, which enables application inspection and control of Web traffic, a common entry point for Internet threats. Additionally the new Cisco PIX 7.0 Modular Policy Framework provides network administrators with more granular and flexible inspection control over individual applications and user traffic traversing a firewall. In combination, these new software features prevent malicious behavior such as malformed malĀ·formed adj. Abnormally or faultily formed. packets, bandwidth consuming IM and P2P traffic and application-embedded attacks from impacting application performance and proliferation of network attacks. Enhanced Endpoint Security with Cisco Security Agent Version 4.5 The new CSA 4.5 provides improved anti-spyware/malware protection as well as support for international Windows OS and Redhat Linux. CSA 4.5 also includes advanced integration with Network Admission Control, (NAC) the Cisco-sponsored industrywide initiative led by Cisco to help improve a network's ability to identify, respond, and adapt to security threats, and allows policies to be dynamically changed based on the devices security posture, user credentials, or location of the end device. More information about additional products announced today can be found at http://newsroom.cisco.com/dlls/2005/securityproduct_detail_021505.pdf Pricing and availability New software releases are available to Cisco customers with active SmartNET contracts at no extra charge.
----------------------------------------------------------------------
Product Scheduled Availability Pricing
----------------------------------------------------------------------
Cisco IPS 5.0 Q1CY'05 -Free under service
contract
-$5700 otherwise
----------------------------------------------------------------------
Cisco VPN 3000 Series Q1CY'05 -Free under service
version 4.7 contract
(SSL-VPN + Secure -Varies by model
Desktop) starting at $495
----------------------------------------------------------------------
Cisco IOS Software Q1CY'05 -Free under service
Release 12.3(14)T contract
-Varies by model
----------------------------------------------------------------------
Cisco PIX 7.0 Q1CY'05 -Free under service
contract
-Varies by model
starting at $250
----------------------------------------------------------------------
Cisco Catalyst 6500 DDoS Q1CY'05 $35,000
Traffic Anomaly Detector
Module
----------------------------------------------------------------------
Cisco Catalyst 6500 DDoS Q1CY'05 $80,000
Anomaly Guard Module
----------------------------------------------------------------------
CSA 4.5 Q1CY'05 Varies by
user/server license
starting at $1050
----------------------------------------------------------------------
CS-MARS Q1CY'05 Varies, starting at
$15,000
----------------------------------------------------------------------
Cisco Security Auditor April '05 Starting at $8k
----------------------------------------------------------------------
About Cisco Systems Cisco Systems, Inc. (Nasdaq:CSCO), the worldwide leader in networking for the Internet, this year celebrates 20 years of commitment to technology innovation, industry leadership, and corporate social responsibility. Information about Cisco can be found at http://www.cisco.com. For ongoing news, please go to http://newsroom.cisco.com Cisco, Cisco Systems, and the Cisco Systems logo, are registered trademarks or trademarks of Cisco Systems, Inc. and/or its affiliates in the United States United States, officially United States of America, republic (2005 est. pop. 295,734,000), 3,539,227 sq mi (9,166,598 sq km), North America. The United States is the world's third largest country in population and the fourth largest country in area. and certain other countries. All other trademarks mentioned in this document are the property of their respective owners. The use of the word partner does not imply a partnership relationship between Cisco and any other company. This document is Cisco Public Information. |
|
Printer friendly
Cite/link
Email
Feedback
Reader Opinion