Cisco Blogs


Cisco Blog > Government

Cisco ASA earns Common Criteria Certification.

The Global Certification Team (GCT) is extremely proud to announce the receipt of Common Criteria certification for our ASA 5500 & 5585 Series Security Appliances including: Cisco ASA 5505, 5510, 5520, 5540, 5550, 5580-20, 5580-40, 5585-S10, 5585-S20, 5585-S40, and 5585-S60, running Cisco ASA Release 8.4(4.1).  This certification effort was completed at Assurance Level: EAL4+, and evaluated against the US Government Protection Profile for Application-level Firewall in Basis Robustness Environments, Version 1.1, July 2007.

The official certification listing can be found at: Cisco Adaptive Security Appliances (ASA) Firewall and Virtual Private Network (VPN) Platform, version 8.4(4.1).

In addition to a robust firewall, businesses of all sizes need a full complement of security services, including intrusion prevention, VPN, content security, unified communications, and remote access. The Cisco ASA Family of security devices was built to meet these needs. More info on the Cisco ASA family can be found on Cisco.com

Get up to the minute updates on Cisco product certifications from the official GCT twitter,@CiscoCertTeam!

 

Tags: , , , ,

Cisco ASA Service Module (SM) receives USGv6 Certification!

The Global Certification Team (GCT) is pleased to announce the Cisco Adaptive Security Appliance Services Module (ASA SM) blade for 6500 series & 7600 series on software version 9.0.(0)16 or later has received USGv6 Certification from University of New Hampshire – Interoperability Laboratory. The UNH-IOL uses this collaborative testing model to distribute the cost of performing trusted, third-party testing and validation. USGv6 testing covers 27 categories of USGv6 NPD tests. You can find the listing for Conformance testing v1.2 (12424) at the UNH Interoperability Lab. For more information, visit the Lab at  https://www.iol.unh.edu/services/testing/ipv6/usgv6tested.php and Cisco.com GCT Security.

Get up to the minute updates on Cisco product certifications from the official GCT twitter, @CiscoCertTeam!

Tags: , , , , , , , , , , ,

The Optimized Secure Network for Cisco VXI

Today, Cisco announced the new release of the Cisco VXI Smart Solution. Part of the announcement is, of course, enhancements in our Borderless Networks architecture to enable our customers to deploy a secure, reliable, and fast virtual desktop infrastructure.

Read More »

Tags: , , , , , , ,

TechWiseTV 120 Defending the Data Center

We had to dig further, past our initial meetings internally and determine what would make this particular story unique from previous ones we have told this year.  As it turns out, we had plenty of material to share but three really good shows done earlier, now provide great context for appreciating the innovation we talk about in this one.

Check out: Fundamentals of High End FirewallsFundamentals of Intrusion Prevention and (TechWiseTV 115) Firewall Reinvention with the ASA-CX

So topically, Security in the Data Center is an easy hit of course.  It almost sounds like an Oxymoron as many are convinced it is some kind of insurmountable obstacle. Nothing could be further from the truth.   It seems to top many lists.  [Watch ‘Defending the Data Center’ Right Now.]

As Cisco broadens the tool set with new models and deployment options, we broke this one down along party lines:

Read More »

Tags: , , , , , , , ,

Defending the Data Center

It’s no secret that enterprise data centers are in a state of transformation – they always are. There’s a constant need to scale data center operations to meet the seemingly insatiable demand for connection and throughput speeds, as well as the number of concurrent sessions. In fact, experts anticipate that these performance demands will increase by as much as 30X over the next few years.  While that statistic alone is remarkable enough, that’s just part of the story.  Adding to the dramatic changes is the trend toward virtualization – with over half of all workloads expected to be virtualized by next year; and the fact that employees currently use an average of more than three mobile devices to access enterprise networks.

All of these trends are fundamentally changing data center operations today. And while the obvious impact of these changes is the need for performance scalability to meet the increasing demands, they also inherently change how data centers are secured. It’s this second impact that is often overlooked. While security is certainly important to data center administrators, it isn’t their only concern.  Oftentimes their primary focus is maintaining business-IT alignment and avoiding chokepoints that can degrade performance and jeopardize their SLAs.  As a result, security is frequently put on the backburner while the entire operation continues to upscale – opening the door to the perfect storm for a major security breach.

Unfortunately, most security products are “bolted on” as an afterthought, so they’re not capable of meeting the robust and dynamically changing needs of enterprise data centers. But Cisco handles security very differently than the rest of the industry. By leveraging the SecureX Architecture, Cisco security solutions are built into the network fabric. 70 percent of the world’s Internet traffic and 35 percent of the world’s email traffic flows through Cisco networks, putting Cisco in the best position to see and proactively protect against threats before they affect customers’ networks. Cisco gains intelligence from throughout the network to enable more informed security decisions, and has used that intelligence to integrate security throughout the network infrastructure to provide comprehensive policy enforcement.

To this end, today Cisco made a series of product announcements that help provide modern data centers with what they need to remain secure, while enabling them to meet their business needs:

  • Cisco ASA Software Release 9.0, which is a major release of the core operating system which powers the entire line of ASA security appliances, adding data center-class performance and next-generation firewall capabilities
  • The Cisco ASA 1000V Cloud Firewall, a new multi-tenant edge firewall that uses the same base ASA code that runs the physical ASA appliances, but is optimized for virtual and cloud environments
  • Cisco IPS 4500 Series Sensors, a new series of standalone enterprise-class IPS appliances that provide up to 10 Gbps of IPS throughput in a single blade –four times the performance density of the closest competitor
  • Cisco Security Manager 4.3, which delivers several important capabilities for up to an 80% improvement in operational efficiency, as well as northbound APIs that enable customers to more efficiently deploy comprehensive security solutions

With these new product announcements, in addition to the rest of the SecureX Architecture, Cisco makes security a deployment decision, just like the rest of your network, with consistent security that enables policies to work throughout hybrid environments – physical, virtual, and cloud.  Because we’re part of the network fabric, rather than a bolted-on point product vendor, we deliver security when, where, and how you need it to deliver a flexible, comprehensive security solution. As a result, Cisco can provide high levels of network security, while enabling enterprise data centers to maintain business-IT alignment and avoid chokepoints that can degrade performance and jeopardize SLAs.  And since we enable one layer of security policies to work throughout the hybrid environment, we provide a high level of security while significantly decreasing complexity.

For more information, please visit http://www.cisco.com/go/securedc.

Tags: , , , , , , ,