Cisco Security Server Agent (Win, Lin, Sol), 1000-Agent Bundle CSA-B1000-SRVR-K9 Ficha De Dados
Códigos do produto
CSA-B1000-SRVR-K9
Data Sheet
All contents are Copyright © 1992–2008 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information.
Page 1 of 6
Cisco Security Agent Version 5.2
Product Overview
Cisco
®
Security Agent security software provides threat protection for server, desktop, and Point-
of-Service (POS) computing systems. Cisco Security Agent goes beyond conventional endpoint
security solutions, providing an industry-leading defense against targeted attacks, spyware,
rootkits, and day-zero attacks. Proactive protection is offered against unknown, never-seen-before
threats, brand new exploits, and variants trying to take advantage of recently announced
vulnerabilities. Cisco Security Agent provides “zero update” system integrity protection for critical
servers that cannot be taken out of service to apply operating system or application-specific
vulnerability patches. It helps reduce emergency patching of systems to respond to vulnerability
announcements, minimizing patch-related downtime and IT manhour expenses. Organizations can
now patch on their own schedule, not in crisis mode.
Robust policy compliance controls offer protection for sensitive data files and critical servers.
Access to key files, applications, and servers can be monitored or controls enforced to stop
inadvertent or malicious data loss. Removable media usage controls reduce risk and ensure
workplace compliance. Granular controls may be put in place as needed to manage policy
compliance for users, applications, systems, locations, and network addresses.
Cisco Security Agent offers more than a standalone endpoint security solution. It collaborates with
network security devices to increase the effectiveness of the overall network deployment. Cisco
VPN devices can leverage Cisco Security Agent’s personal firewall and host intrusion prevention
(HIPS) features to provide robust endpoint security for IP Security (IPSec) and Secure Sockets
Layer (SSL) VPN remote-access users. Host information collected by Cisco Security Agent can be
shared with Cisco network IPS devices to enhance the overall awareness and relevancy of the IPS
actions taken in the network. The firewall and application inspection capabilities of Cisco ASA and
Cisco PIX
®
security appliances can be enhanced by Cisco Security Agent to examine particular
applications based on Cisco Security Agent traffic markings.
Network Integrated Features Table
Table 1 lists the network integration features of Cisco Security Agent.
Table 1.
Network Integration Features
Feature
Description
Wireless Policy
Controls
Controls
Cisco Security Agent provides wireless policy controls to enhance the overall security and
optimize the bandwidth of a wireless deployment. Policies can restrict wireless connections to
specific parameters, such as requiring a VPN connection for wireless traffic when a user is out of
the office. Critical applications can be prioritized to minimize latency over the wireless LAN
infrastructure. Cisco Security Agent’s location-based policy controls offer an additional layer of
protection when users are out of the office.
optimize the bandwidth of a wireless deployment. Policies can restrict wireless connections to
specific parameters, such as requiring a VPN connection for wireless traffic when a user is out of
the office. Critical applications can be prioritized to minimize latency over the wireless LAN
infrastructure. Cisco Security Agent’s location-based policy controls offer an additional layer of
protection when users are out of the office.
Traffic Marking
Cisco Security Agent can classify traffic on a per-application basis on wireless and wired
networks to provide quality of service for critical applications, such as Oracle financials or
voice/video. Less-critical applications such as Web browsing or e-mail can be classified as a
lower priority, to optimize available network bandwidth. Cisco Security Agent traffic markings can
also be used to enhance the firewall inspection capabilities of Cisco ASA 5500 Series and Cisco
PIX security appliances to apply specific application inspection policies.
networks to provide quality of service for critical applications, such as Oracle financials or
voice/video. Less-critical applications such as Web browsing or e-mail can be classified as a
lower priority, to optimize available network bandwidth. Cisco Security Agent traffic markings can
also be used to enhance the firewall inspection capabilities of Cisco ASA 5500 Series and Cisco
PIX security appliances to apply specific application inspection policies.