© 2003, Cisco Systems, Inc. All rights reserved. CSPFA Chapter 2 Network Security and Cisco

© 2003, Cisco Systems, Inc. All rights reserved. CSPFA Objectives

© 2003, Cisco Systems, Inc. All rights reserved. CSPFA Objectives Upon completion of this chapter, you will be able to perform the following tasks: State the reasons for securing computer networks. Define computer hacking and describe the four primary threats associated with that activity. Define the four primary types of threats against network security. Describe the three primary methods of attack against todays computer networks. Describe the purpose of the Security Wheel. Describe the Cisco AVVID architecture. Describe the SAFE framework.

© 2003, Cisco Systems, Inc. All rights reserved. CSPFA Network Security

© 2003, Cisco Systems, Inc. All rights reserved. CSPFA Network Security Is Essential Network security is essential because the Internet has made networked computers accessible and vulnerable.

© 2003, Cisco Systems, Inc. All rights reserved. CSPFA Network Security Threats There are four primary threats to network security: Unstructured threats Structured threats External threats Internal threats

© 2003, Cisco Systems, Inc. All rights reserved. CSPFA Three Primary Network Attacks There are three types of network attacks: Reconnaissance attacks Access attacks Denial of service attacks

© 2003, Cisco Systems, Inc. All rights reserved. CSPFA Network Security as a Continuous Process Network security is a continuous process built around a security policy. Step 1: Secure Step 2: Monitor Step 3: Test Step 4: Improve Secure Monitor Test Improve Security Policy

© 2003, Cisco Systems, Inc. All rights reserved. CSPFA Secure Monitor Test Improve Security Policy Secure the Network Implement security solutions to stop or prevent unauthorized access or activities, and to protect information: Authentication Encryption Firewalls Vulnerability patching

© 2003, Cisco Systems, Inc. All rights reserved. CSPFA Secure Monitor Test Improve Security Policy Monitor Security Detects violations to the security policy. Involves system auditing and real-time intrusion detection. Validates the security implementation in Step 1.

© 2003, Cisco Systems, Inc. All rights reserved. CSPFA Secure Monitor Test Improve Security Policy Test Security Validates the effectiveness of the security policy through system auditing and vulnerability scanning.

© 2003, Cisco Systems, Inc. All rights reserved. CSPFA Secure Monitor Test Improve Security Policy Improve Security Use information from the monitor and test phases to make improvements to the security implementation. Adjust the security policy as security vulnerabilities and risks are identified.

© 2003, Cisco Systems, Inc. All rights reserved. CSPFA Cisco AVVID and SAFE

© 2003, Cisco Systems, Inc. All rights reserved. CSPFA Cisco AVVID Architecture E-Learning Supply Chain Workforce Optimization Customer Care Internet Commerce Intelligent Network Services Network Platforms Multicast Load Balancing CachingDNSServicesManagementAccounting Real Time ServicesQoSSecurity Intelligent Network Classification Internet Business Integrators Internet Middleware Layer Messaging Contact Center Voice Call Processing Collaboration Video on Demand Personal Productivity Policy Management Content Distribution Address Management Security SLA Management Clients Multimedia

© 2003, Cisco Systems, Inc. All rights reserved. CSPFA Cisco AVVID Overview Cisco AVVID is the one enterprise architecture that provides the intelligent network infrastructure for todays Internet business solutions. As the industrys only enterprise-wide, standards-based network architecture, Cisco AVVID provides the roadmap for combining Cisco customers business and technology strategies into one cohesive model.

© 2003, Cisco Systems, Inc. All rights reserved. CSPFA Cisco AVVID Benefits IntegrationBy leveraging the Cisco AVVID architecture and applying the network intelligence inherent in IP, companies can develop comprehensive tools to improve productivity. IntelligenceTraffic prioritization and intelligent networking services maximize network efficiency for optimized application performance. InnovationCustomers have the ability to adapt quickly in a changing business environment. InteroperabilityStandards-based APIs enable open-integration with third-party developers, providing customers with choice and flexibility.

© 2003, Cisco Systems, Inc. All rights reserved. CSPFA SAFE Blueprint Overview Building on Cisco AVVID, the SAFE framework provides a secure migration path for companies to implement converged voice, video, and data networks. SAFE is a flexible framework that empowers companies to securely, reliably, and cost-effectively take advantage of the Internet economy. SAFE integrates scalable, high performance security services throughout the e-business infrastructure. SAFE is enhanced by a rich ecosystem of products, partners, and services that enable companies to implement secure e-business infrastructures today.

© 2003, Cisco Systems, Inc. All rights reserved. CSPFA SAFE Benefits Provides a proven, detailed blueprint to securely compete in the Internet economy. Provides the foundation for migrating to secure, cost- effective, converged networks. Enables organizations to stay within their budgets by deploying a modular, scalable security framework in stages. Delivers protection at every access point to the network through best-in-class security products and services.

© 2003, Cisco Systems, Inc. All rights reserved. CSPFA SAFE Modular Blueprint Enterprise campus Enterprise edge Service provider edge Building distribution Building distribution Management Server Core Edge distribution Edge distribution E-commerce Corporate Internet Corporate Internet VPN and remote access WAN ISP B ISP A PSTN Frame or ATM Frame or ATM

© 2003, Cisco Systems, Inc. All rights reserved. CSPFA SAFE Blueprint and Ecosystem Solutions Ecosystem $ Cisco programs and services Security Associate solutions Integration partners Applications Directory Operations Service control Infrastructure Appliances or clients Cisco AVVID system architecture Secure e-commerce Secure supply chain management Secure intranet for workforce optimization

© 2003, Cisco Systems, Inc. All rights reserved. CSPFA Cisco AVVID Partner Program Security and VPN Products Application Security Products Identity Products Management and Monitoring Products Perimeter Security Products Secure Connectivity Products

© 2003, Cisco Systems, Inc. All rights reserved. CSPFA Cisco AVVID Partner Program Security and VPN Service Solutions Application and Code Review Business Impact and Risk Assessment Competitive Counter-Intelligence Design and Implementation Incident Response Outsource Monitoring and Management Policy and Procedure Vulnerability Assessment

© 2003, Cisco Systems, Inc. All rights reserved. CSPFA CCO Links

© 2003, Cisco Systems, Inc. All rights reserved. CSPFA Summary

© 2003, Cisco Systems, Inc. All rights reserved. CSPFA Summary Network security is essential because networked computers are accessible and vulnerable from any computer in the world. There are four primary threats to network security: unstructured, structured, external, and internal threats. There are three types of network attacks: reconnaissance, access, and denial of service attacks. The Security Wheel is the graphical representation of security as a continuous process. Cisco AVVID is a standards-based enterprise architecture that accelerates the integration of business and technology strategies. Cisco SAFE, which is based on Cisco AVVID, is a flexible, dynamic, security blueprint for networks.