Cisco Blogs


Cisco Blog > Government

Cisco Integrated Services Routers (ISR) 881W/GW achieve FIPS 140-2 Certification!

April 13, 2012 at 7:12 am PST

The Global Certification Team (GCT) is thrilled to announce that the ISR 881W/881GW has completed the FIPS certification process.  The official listing has been posted to the NIST website, being awarded certificate #1700, as FIPS 140-2, Level 2 Certified.

The Cisco 881W and Cisco 881GW ISR’s provide connectivity and security services in a single, secure device. These routers offer broadband speeds and simplified management to small businesses, and enterprise small branch and teleworkers. The module is also a wireless access point that provide secure wireless access to clients.

Read More »

Tags: , , , , , , , , , , , ,

In-Orbit Upgrades Enhance Security, Introduce IPv6 Support for IRIS

Cisco’s Internet Routing In Space (IRIS), the first solution to bring the networking capabilities of Cisco IOS Software to space, is continuing to transform the satellite communication industry.

The testing and deployment of IRIS has been full of industry firsts. In the most recent milestone, TeleCommunication Systems (TCS), Cisco’s partner in deploying IRIS services, this week announced that it has completed production integration testing and roll-out of a software upgrade to OS-IRIS, adding enhanced encryption and additional IPv6 support to the platform.

According to Michael Bristol, general manager and senior vice president of government solutions for TCS, “Cisco IRIS technology is transforming how government agencies and commercial organizations use IP-based network services to accomplish their objectives. This is another milestone in the long-term satellite industry collaboration between TCS and Cisco, and we look forward to increasing opportunities for both government and commercial markets to deploy more flexible and cost-efficient solutions.”

TCS OS-IRIS allows organizations to directly connect sites on multiple continents without the need for double satellite hops or the traditional connection to a commercial teleport. This converged solution enables voice, data and video traffic over a single IP network to increase efficiency and flexibility, compared with more fragmented, traditional satellite communication networks. Customers benefit from increased bandwidth availability, reduced latency, optimization tools and application flexibility delivered by TCS through an end-to-end Cisco secure IP network.

Learn more about the announcement here:

http://phx.corporate-ir.net/phoenix.zhtml?c=123361&p=irol-newsArticle&ID=1672444&highlight=

Tags: , , , , , , , , ,

Offline Analysis of IOS Image Integrity

Forensic analysis of IOS images can be a tricky science, due in part to the diversity in IOS image versions and branches. Between IOS 11 and IOS 12.4, over five thousand different images were built, a quarter of which belong to the 12.2 train. Some IOS trains are in more widespread use than others, just as some hardware platforms are more popular than others, but even when narrowing down by feature-set or hardware, there is a large diversity of images. There are however, some steps that can be taken, both while the IOS device is running, as well as offline, that can help determine the integrity of an IOS image.

Read More »

Tags: , ,

Block a country with my Cisco Router or Firewall

Problem:

We are often asked by customers about how they can prevent traffic from a certain country (let’s say country X) from entering their network. The motivations for doing this could vary. Sometimes a company does not do business with all countries in the world; therefore, the company doesn’t need to be accessible from all countries. Other times it is an issue of trust and security, where an administrator may not want to allow country X to enter their infrastructure. Finally, there are cases where country X has often been incriminated with malicious activity, so an administrator may want to block country X when there is no need for the organization to interact with this country. In this document I present a methodology on how to write a tool that provides the configuration lines to block country X, using your IOS router or ASA/ASASM firewall.
Read More »

Tags: , , , , , ,

Cisco 5940 Embedded Services Routers are now FIPS certified!

December 6, 2011 at 6:28 am PST

GCT is proud to announce the FIPS Certification of the Cisco 5940 Embedded Services Routers (ESR), certificate # 1639.  More information can be found at http://goo.gl/rcB83

The Cisco 5940 is a high-performance, ruggedized router. With onboard hardware encryption, the Cisco 5940 offloads encryption processing from the router to provide highly secure yet scalable video, voice, and data services for mobile and embedded outdoor networks. The Cisco 5940 Embedded Services Routers provide a scalable, secure, manageable remote access server that meets FIPS 140-2 Level 1 requirements. The Cisco 5940 Router Card uses industrial-grade components and is optimized for harsh environments that require Cisco IOS Software routing technology.

Tags: , , , , , , , ,