Cisco CS-MARS-25-K9 CS-MARS-25-K9-RF 데이터 시트
제품 코드
CS-MARS-25-K9-RF
Data Sheet
All contents are Copyright © 1992–2008 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information.
Page 2 of 9
organizations. The proliferation of worms, day-zero attacks, viruses, Trojan horses, spyware, and
attack tools challenges even the most fortified infrastructures, resulting in shorter reaction time and
costly remediation.
In addition to the number of servers and network devices, each security component offers isolated
event log and alert features for anomaly detection, threat reaction, and forensics. Unfortunately,
this isolation yields a tremendous amount of noise, alarms, log files, and false positives for
operators to discern or effectively utilize. In addition, compliance legislature requires strict data
privacy, improved operational security, and documented audit processes.
Advancing Security Information Management and Threat Mitigation
Security information and event management products logically seem to alleviate these problems—
helping you measure threats so you can manage them. These products enable operators to
centrally aggregate security events and logs, analyze this data through limited correlation and
query techniques, and generate alarms and reports about isolated events.
Unfortunately, many first-generation and second-generation security information and event
management products do not yield sufficient network intelligence and performance attributes to
precisely identify and validate correlated events, specifically determine attack paths, or precisely
remove threats. Cisco addresses these security issues and management deficiencies with a family
of scalable enterprise threat mitigation appliances. Cisco Security MARS complements your
network and security infrastructure investment by delivering a security threat control and
containment solution that is easy to deploy, easy to use, and cost-effective. The Cisco Security
MARS family of high-performance, scalable threat mitigation appliances fortifies deployed network
devices and security countermeasures by combining network intelligence, ContextCorrelation™
features, SureVector™ analysis, and AutoMitigate™ capability, which empower organizations to
readily identify, manage, and eliminate network attacks and maintain compliance.
Cisco Security MARS tightly integrates with Cisco’s premier security management configuration
product, Cisco Security Manager. This integration maps traffic-related syslog messages to the
firewall policies defined in Cisco Security Manager that triggered the event. Policy lookup enables
rapid, round-trip analysis for troubleshooting firewall-configuration-related network issues and
configuration errors.
Figure 1. Shows the MARS Dashboard page with a Summary of Current Security Posture