The Lippis Report

By Cisco Systems and ArcSight

This document is for the reader who:

-Has read the Cisco Security Information and Event Management and Borderless Networks Enterprise Deployment Guide
-Wants to connect Borderless Networks to the ArcSight SIEM solution
-Wants to gain a general understanding of the ArcSight SIEM solution
-Has a level of understanding equivalent to a CCNA® certification
-Wants to solve compliance and regulatory reporting problems
-Wants to enhance network security and operations
-Wants to improve IT operational efficiency
-Wants the assurance of a validated solution

Download this deployment guide here:

By Cisco Systems

Today’s sophisticated, blended threats can exploit three or four different communications vehicles before they launch full-scale attacks on unprepared enterprise networks. This white paper, written for IT managers and executives, examines the new security risks for today’s borderless enterprise networks, and describes how cloud-based Cisco® Security Intelligence Operations and powerful, comprehensive reputation filtering capabilities built into Cisco security appliances and services can help you protect your network from known and unknown threats.

Find out how by downloading this paper.

By Cisco Systems

The broad parameters and urgency of the Comprehensive National Cybersecurity Initiative (CNCI) require IT triage using risk management and leading technology practices. Some investments must occur earlier and more systemically than others. This white paper helps senior government staff understand the need to embed identity- and policy-based controls throughout essential infrastructure. The critical steps outlined in this paper will improve the government’s front line of defense and boost situational awareness to combat immediate threats. The same actions infuse identity, policy enforcement and intelligence-based security throughout the network, helping to strengthen the future cybersecurity environment.

Find out how by downloading this paper.

By HP Networking

As cyber threats across the globe continue to increase in number and sophistication, security and networking personnel must not only work harder but also smarter to stay ahead of malicious attacks. Sophisticated scanning, penetrating, and obfuscating tools and techniques are more widely available now more than ever before. Worst of all, hackers are now highly motivated to penetrate networks, applications, and databases to steal information that can quickly be sold for profit using botnets and other resources
they control.

To learn how to defend IT assets and business reputation by download this paper from HP Networking.

By Cisco Systems

Traditional security techniques are unable to respond to threats that can arise from anywhere. To protect today’s borderless networks, IT managers must adapt by implementing faster, smarter security measures that monitor the constantly changing global landscape. This white paper, written for IT managers and executives, examines the security risks and needs of borderless networks, details a systematic plan of action, and describes how Cisco can help implement threat defenses that will serve you today and for years to come.

Find out how by downloading this white paper

By Cisco Systems

Spanning-Tree Protocol (STP) can be easily compromised by eavesdropping in a switched corporate environment, but this vulnerability can be mitigated using L2 security features that are available on the Cisco® Catalyst® 6500. STP Man in The Middle (MiTM) attack compromises the STP “Root Bridge” election process and allows a hacker to use their PC to masquerade as a “Root Bridge,” thus controlling the flow of L2 traffic. To understand the attack, the reader must have a basic understanding of the “Root Bridge” Election process and the initial STP operations that build the loop free topology. This paper provides an overview of the STP Root Bridge Election Process, STP MiTM Attack Guide and Mitigation Techniques for STP attacks.

Find out how by downloading this white paper

By Cisco Systems

This paper provides a brief introduction to common security threats on IPv6 campus access networks and will explain the value of using First Hop Security (FHS) technology in mitigating these threats. An overview of the operational principle of FHS is provided together with some examples on how to enable FHS on Catalyst® 6500, 4500, and 3750 Series Switches. The target audience for this paper are network architects and network operation engineers.

Find out about FHS by downloading this Cisco whitepaper.

THE WORLD’S LARGEST SECURITY ANALYSIS OF REAL-WORLD WEB TRAFFIC
By Cisco Systems

The ScanSafe Global Threat Report is an analysis of more than a trillion Web requests processed in 2009 by the ScanSafe Threat Center on behalf of the company’s corporate clients in over 80 countries across five continents. Our leading position of providing security in-the-cloud provides unparalleled insight in the real-world Web threats faced by the today’s enterprise; this report represents the world’s largest security analysis of real- world Web traffic.

Download it now here.

By Cisco Systems

The traditional network and physical perimeter is no longer the only borderline to defend information security. Collaboration, IT consumerization, mobility, and new computing technologies are driving productivity gains while presenting renewed security requirements. There is greater pressure on IT to meet the demands of a dynamic workforce, both in terms of service delivery and security challenges. New solutions are needed to protect borderless networks and to help further improve business efficiencies in the mean time. Cisco® TrustSec is such a solution.

To find out how to protect your network with TrustSec download this white paper now

Cisco’s TrustSec is architecture with its implementation spread across client software, infrastructure (Catalyst & Nexus) and policy (Access Control System and NAC appliance). Cisco has expanded TrustSec to incorporate 802.1x clients allowing IT leaders to mix and match NAC and 802.1x endpoints. TrustSec organizes and simplifies authentication and policy schema allowing administrators to configure and maintain identity-based access to IT resources while identifying and applying policy based on a user roles in the organization. TrustSec also provides encrypted links at the switch port level. Steven Song Security Business Manager in the Network Systems & Security group at Cisco Systems joins me to discuss TrustSec and how Cisco is expanding its services and importance for IT business leaders.

By Cisco

As the Internet transforms from a static resource to a utility platform enabling two-way communications, malicious threats have increased in volume and shifted their focus toward the Web. Hackers are exploiting the vulnerabilities of an open and dynamic Web to distribute their malware rather than creating their own malicious websites. Web malware infection from reputable websites that have been compromised is now not only a reality, but is now the preferred route to infect victims. This change has made traditional methods of control such as anti-virus less effective and requires an alternative approach to security. This alternative approach is Cloud Web Security.

To understand Cloud Web Security download this white paper

The Web is increasingly being used as the threat vector of choice by hackers and cybercriminals to distribute malware and perpetuate identity theft, financial fraud, and corporate espionage. Is exploit sophistication and complexity evolving beyond traditional end-point anti-virus mitigation? Is a network centric model a faster and more accurate approach to zero day threat defense where massive cloud computing resources are put to work identifying and mitigating complex, polymorphic threats designed to evade anti-virus software and are mitigated before they reach desktop or mobile end-points? Mark Guntrip, Product Manager at Cisco Systems joins me to discuss Cisco ScanSafe, a Cloud Web Security Offering and debate client- versus network-based zero day threat defense.

Garter has moved Cisco up to the Leaders Quadrant in its Magic Quadrant for 2009 Secure Web Gateways. Gartner reflected in their analysis that Cisco’s long-term focus on innovation and quality has resulted in market leadership. Garter identifies the following Cisco strengths.

On-Premise
* On-box malware prevention
* Performance & scalability
* DLP
* Real-time categorization

Cloud
* Simple management interface
* Reporting
* Ease-of-deployment
* Real-time categorization

Gartner has recognized Cisco as a Leader in the 2009 Magic Quadrant for SSL VPNs. Cisco has made the move from Visionary Quadrant last year to the Leaders Quadrant on the strength of its innovative AnyConnect VPN technology and direction. Here are a few items Gartner highlights in the report:

* Cisco is the only vendor to move from a non-leader position into
the Leaders’ Quadrant

* Cisco is forging the path as 10 of the surveyed vendors consider
Cisco a major competitive threat

* Cisco exceeded all other vendors in the number of new concurrent
SSL VPN seats in the period

* Gartner clients report that feedback and satisfaction with the
Cisco SSL VPN product have improved significantly