Secure borderless networks architecture

Cisco announced the Cisco Secure Borderless Network architecture, which evolves enterprise security by focusing on four critical anchors: enterprise endpoints (mobile or fixed), the Internet edge, the data center, and policy that is context- and location-aware.

Architecture highlights:

Cisco AnyConnect Secure Mobility
Integrates functionality across the Cisco AnyConnect Secure Mobility Client, the Cisco IronPort S-Series Web Security Appliance and the Cisco Adaptive Security Appliance firewall. The remote access, Web security and threat-intelligence capabilities of this solution allows enterprises to extend their corporate policy and controls to mobile users.

Specific enhancements within Cisco AnyConnect include:

  • Secure connectivity
  • Automatic security gateway detection
  • Trusted network detection
  • ecure application access for both managed and unmanaged devices.

Specific enhancements within Cisco IronPort Web Security Appliance include:

  • Application visibility and control
  • SaaS access controls
  • Enhanced threat defense
  • Unified on-premises and off-premises security policies and reporting.

Future plans call for extending the Cisco AnyConnect Secure Mobility solution to include hybrid enforcement delivered through the Cisco IronPort S-Series appliances and cloud-based security delivered through Cisco ScanSafe. By combining the endpoint, the network and the cloud within one solution, flexibility and scalability for enterprises is ensured.

Cisco TrustSec
Helps build policy, identity and protection into the network with policy-based access control, identity-aware networking, and data integrity and confidentiality. The solution is expanded to include Cisco Network Admission Control (NAC) and Cisco Identity-Based Networking Services (IBNS).

Cisco TrustSec features include integrated device profiling and guest access services for 802.1X environments, 802.1X-based technologies, end-to-end monitoring and troubleshooting capabilities, delivery of Security Group Tag (SGT), and SGT Exchange Protocol (SXP) technologies for Cisco Catalyst and Cisco Nexus switches.




Share this