Cisco’s One Platform Kit (onePK) is a fantastic toolkit for building custom applications that interact with your Cisco routers and switches. Using onePK, you can build automation directly into the network and extend all sorts of functionality using Cisco devices. The first in a three-part blog series, this article will introduce onePK to the reader, explain what it is, how it can be useful, and will show how to configure onePK on a router. The second and third installments will walk the reader through a simple security-relevant application using the C API. Important to note is that we’ll be covering the 0.6.0 version of onePK features and service sets. At the time of this writing, the toolkit is still in Controlled Availability and as such, is still in active development, and the API could change before it is released into General Availability. However, even in the face of API evolutionism, this article will provide you with a solid jumping-off point for your plunge into the wondrous world of onePK.
OK, Just What is onePK?
OnePK is a Cisco IOS Software feature and a set of programming libraries enabling an application programmer to build powerful applications that tightly integrate and interact with Cisco devices. onePK is available to you via a well-documented and unified API, currently offered in C and Java with Python in active development. It is currently in pre-release and is available only on request. Details on how to obtain onePK are provided below. Read More »
Tags: Cisco, cisco ios, Cisco Security, cisco sio, IOS, One Platform Kit, onePK, secure software, security
Today, Cisco is celebrating a milestone in its commitment to helping you act on security intelligence—our 10th bundle of Cisco IOS Software Security Advisories. We’re proud of our commitment to these predictable disclosures (on the fourth Wednesday of March and September annually) because they originated as a direct response to your feedback. Bundled publications allow you to plan ahead and ensure resources are available to analyze, test, and remediate vulnerabilities in your environments. In an upcoming post, my colleague John Stuppi will share how the Cisco Product Security Incident Response Team (PSIRT) drove the evolution from a traditional disclosure model to the current semiannual bundled publication. John’s post will also provide another vehicle to share feedback with PSIRT, the organization that manages the receipt, investigation, and public reporting of security vulnerability information that is related to Cisco products and networks.
Make sure you take a look at the Cisco Event Response—our “go to” document that correlates the full array of Cisco Security Intelligence Operations (SIO) resources for this bundle (including links to the advisories, mitigations, Cisco IntelliShield Alerts, CVSS scores, and OVAL content). Remember, this collateral is not unique to Cisco IOS Software Security Advisories but is part of Cisco SIO’s response to current security events.
Today’s edition of the Cisco IOS Software Security Advisory Bundled Publication includes seven advisories that affect the following technologies:
- Network Address Translation
- Resource Reservation Protocol
- Internet Key Exchange
- Zone-Based Firewall Session Initiation Protocol Inspection
- Smart Install
- Protocol Translation
- IP Service Level Agreement Read More »
Tags: Cisco, cisco ios, Cisco PSIRT, Cisco Security, cisco sio, IOS, vulnerability
It’s that time of year again, folks. On Wednesday of next week, the Cisco Product Security Incident Response Team (PSIRT) will release the first Cisco IOS Software Security Advisory Bundled Publication of 2013. As a reminder, Cisco releases bundles of Cisco IOS Software Security Advisories on the fourth Wednesday of March and September each calendar year. As is the case with the vast majority of our security advisories, vulnerabilities scheduled for disclosure in the upcoming bundle will normally have a Common Vulnerability Scoring System (CVSS) Base Score from 7.0 to 10.0.
Read More »
Tags: Cisco, IOS, ios bundle, psirt, security, vulnerability
The Global Certification Team is proud to announce that the Cisco Catalyst 6500 series switch with Sup2T has earned USGv6 and ReadyLogo Phase two certifications on IOS release 15.0(1)SY1 and later. The details of the USGv6 certification can be found here. LIkewise, the ReadyLogo information can be found here.
The Supervisor Engine 2T is designed to deliver higher performance, better scalability, and enhanced hardware-enabled features. Supervisor Engine 2T integrates a high-performance 2-Terabit crossbar switch fabric that enables 80 Gbps switching capacity per slot on all Cisco Catalyst 6500 E-Series Chassis. The forwarding engine on Supervisor Engine 2T is capable of delivering high-performance forwarding for Layer 2 and Layer 3 services. Supervisor Engine 2T delivers many new hardware-enabled innovations in the areas of security, quality of service (QoS), virtualization, and manageability. The rich feature set of Supervisor Engine 2T enhances applications such as traditional IP forwarding, Layer 2 and Layer 3 Multiprotocol Label Switching (MPLS) VPNs, and VPLS. The Cisco Catalyst 6500 with Supervisor Engine 2T and all the features and the technical advancements establish product leadership in borderless networks as well as data center deployments. More information on the Catalyst 6500 with Sup2T can be found on Cisco.com
Get up to the minute updates on Cisco product certifications from the official GCT twitter, @CiscoCertTeam!
Tags: Cisco Catalyst 6500, IOS, ReadyLogo, Sup2T, USGv6
The Global Certification Team wants to wish each of you a very happy and prosperous new year. To start this year right, we are proud to announce that the Cisco 7600 Series Routers have been Common Criteria Certified! The evaluation includes the 7613, 7609-S, 7606-S, 7604 or 7603-S, with an RSP720 Management Card, and VPN IPSec SPA (ws-ipsec-3) running IOS 15.1(3)S3.
he Cisco 7600 Series is the industry’s first carrier-class edge router to offer integrated, high-density Ethernet switching, carrier-class IP/MPLS routing, and 10-Gbps interfaces, benefiting enterprises and helping enable service providers to deliver both consumer and business services over a single converged Carrier Ethernet network. More information can be found on Cisco.com
Get up to the minute updates on Cisco product certifications from the official GCT twitter,@CiscoCertTeam!
Tags: 15.1(3)S3, 7600, CC, Common, criteria, IOS