Cisco Systems SRW248G4PK9NA User Manual
18
Cisco Small Business 300 Series Managed Switch Administration Guide
360
Security: Secure Sensitive Data Management
Secure Sensitive Data (SSD) is an architecture that facilitates the protection of
sensitive data on a device, such as passwords and keys. The facility makes use of
passphrases, encryption, access control, and user authentication to provide a
secure solution to managing sensitive data.
sensitive data on a device, such as passwords and keys. The facility makes use of
passphrases, encryption, access control, and user authentication to provide a
secure solution to managing sensitive data.
The facility is extended to protect the integrity of configuration files, to secure the
configuration process, and to support SSD zero-touch auto configuration.
configuration process, and to support SSD zero-touch auto configuration.
•
•
•
•
•
•
•
Introduction
SSD protects sensitive data on a device, such as passwords and keys, permits
and denies access to sensitive data encrypted and in plain text based on user
credentials
and denies access to sensitive data encrypted and in plain text based on user
credentials
and SSD rules
, and protects configuration files containing sensitive data
from being tampered with.
In addition, SSD enables the secure backup and sharing of configuration files
containing sensitive data.
containing sensitive data.
SSD provides users with the flexibility to configure the desired level of protection
on their sensitive data; from
on their sensitive data; from
no protection with sensitive data in plaintext, minimum
protection with encryption based on the default passphrase, and better protection with
encryption based on user-defined passphrase.
encryption based on user-defined passphrase.