IP-based network solutions, Cisco
Download
Report
Transcript IP-based network solutions, Cisco
IP-Based Network Solutions
Phil Flores
Major Account Manager – Cisco Systems, inc.
AGI
Pg 1 of 25
www.agiuc.com
Agenda and Topics
• Introduction
• Why Cisco?
• Specific Solutions for DoD/IC community
• STK Integration with CIC and IPC/7970
AGI
Pg 2 of 25
www.agiuc.com
Why Cisco?
• Cisco offers much more than L2/L3 hardware
products
• More than 600 personnel focused specifically
on the Federal community
• More than $3B per year spent on R&D alone for
new products/services offerings across the
following domains:
Optical, L2/L3, Wireless Networking, Multimedia
Collaboration Suite, Network Management,
Storage, Security, IP Communications
AGI
Pg 3 of 25
www.agiuc.com
Specific Solutions for DoD/IC
community
• CIC and CAAS, CCAS, CNPS
• PBX 1/PBX 2 Certification and IPC
• WAFS – Wide Area File Services
• AON – Application-Oriented Networking
• Meeting Place Collaboration Suite
• Optical/Storage
• HAIPE
AGI
Pg 4 of 25
www.agiuc.com
Cisco Security Overview
Why is security
important?
AGI
Pg 5 of 25
www.agiuc.com
AGI
Pg 6 of 25
www.agiuc.com
Key Issues Facing Customers
Today
SIMPLIFICATION
•
•
•
•
Scale
Cost
Staffing
Integration and systems management
APPLICATION AND
SERVICE OPTIMIZATION
•
•
•
•
•
Enablers
Awareness
App management
Performance/Optimization
Resilience
SECURITY
•
•
•
•
AGI
Pg 7 of 25
Threats
Theft
Loss
Response time
www.agiuc.com
Security = Top Business Issue
Gartner: Top Ten Business Trends In 2004
Ranking
2002 2003
2004
Security breaches/business disruptions
-
12
1
Operating costs/budgets
1
1
2
Data protection and privacy
4
2
3
* Need for revenue growth
-
-
4
* Use of information in products/services
-
-
5
* Economic recovery
-
-
6
Single view of customer
3
5
7
Faster innovation
5
3
8
Greater transparency in reporting
-
7
9
Enterprise risk management
-
4
10
Selected change in
ranking compared with 2003
AGI
* New question for 2004
Pg 8 of 25
www.agiuc.com
Security Incidents on the Rise
Incidents
140,000
120,000
100,000
80,000
60,000
40,000
20,000
0
1995
1996
1997
1998
1999
2000
2001
2002
2003
Source: CERT: Carnegie Mellon Software Engineering Institute, IDC
AGI
Pg 9 of 25
www.agiuc.com
Cisco Strategic Overview
Relative to the IIN
AGI
Pg 10 of 25
www.agiuc.com
The New Network Paradigm
Collaboration
E-Mail
Calendar
AudioConferencing
Web
Application
SECURITY
IP Network
VideoVoice
on-Demand Messaging
Telephone
Telephone
Services
Services
Instant
Messaging
Contact
Center
A NEW WAY TO COMMUNICATE AND COLLABORATE—
ENABLED BY AN INTELLIGENT NETWORK
AGI
Pg 11 of 25
www.agiuc.com
Self-Defending Network
•
1. Point
Products
IP + Security
Integrated
Security
2. Disparate
Security
Services
Collaborative
Security
Systems
3. Reactive
Security
Adaptive
Security
AGI
Pg 12 of 25
www.agiuc.com
Self-Defending Network Strategy
Cisco Strategy to
An initiative to dramatically
Dramatically
Improve the
improve the network’s ability
Ability
to Network’s
identify, prevent,
and
to Identify,
Prevent,
adapt to threats and
Adapt to Threats
SECURE
INFRASTRUCTURE
• Secure Connectivity
• Trust and Identity
• Threat Defense
AGI
ADVANCED
SECURITY
TECHNOLOGIES
•
•
•
•
SSL and IPSECVPN
Endpoint Protection
Application Firewall
Network Anomaly
Pg 13 of 25
SYSTEM LEVEL
SOLUTIONS
• Endpoints + Networks
+ Policies
• Partnerships
• Services
www.agiuc.com
Historical approach to
Security vs. Cisco’s
approach to Security
AGI
Pg 14 of 25
www.agiuc.com
Value of Integrated Security System
Security is no longer an option… It’s a necessity
Security as an Option
Security as INTEGRAL of a System
Security is an add-on
Security is built-in
Challenging integration
Intelligent collaboration
Not cost-effective
Appropriate security
Cannot focus on core priority
Direct focus on core priority
AGI
Pg 15 of 25
www.agiuc.com
How does Cisco approach security?
- Intrusion Prevention System
- Intrusion Detection System
- Cisco Security Agent (application behavioral anomalies demo)
- DDoS Solutions
- Cisco Security Monitoring, Analysis and Response System
(CS-MARS)
- 802.1x also supported
- Network Admission Control
AGI
Pg 16 of 25
www.agiuc.com
Cisco Network Admission Control:
First Collaborative Security System Solution
Client attempts connection
Authentication and policy
check of client
Desktop
Si
Remediation
NAC Framework
• Access granted
• Access denied
• Quarantine
remediation
AGI
Corporate
Net
Quarantine
VLAN
Pg 17 of 25
www.agiuc.com
Why is Cisco concerned with developing
world-class security products?
• We use our own products to maintain business
and process integrity.
• Federal customers require secure solutions.
• Cisco understands the mission space in which we
all work.
• STK Integration with CIC and IPC/7970
AGI
Pg 18 of 25
www.agiuc.com
Satellite uplinks/downlinks to terrestrial network
AGI
Pg 19 of 25
www.agiuc.com
AGI
Pg 20 of 25
www.agiuc.com
AGI
Pg 21 of 25
www.agiuc.com
AGI
Pg 22 of 25
www.agiuc.com
AGI
Pg 23 of 25
www.agiuc.com
Phil Flores
[email protected]
Phone: 202-744-1262
AGI
Presentation_ID
© 2001, Cisco Systems, Inc. All rights reserved.
Pg 24 of 25
www.agiuc.com24