Security Flashcards
a security architectural frameworks that helps design secure solutions
Cisco SAFE
Cisco threat intelligence organization
Talos
Acquire by Cisco in 2014, a solution that can perform static file analysis (MD5, filenames,), dynamic file analysis, sandbox
Cisco Threat Grid
Is a malware analysis and protection solution that goes beyond point-in time detection.
Cisco Advance Malware Protection (AMP)
Amp components
AMP Cloud
AMP connectors
AMP for Endpoints
AMP for Network
AMP for Email
AMP for WEB
AMP for Meraki
provide first line of defense against threat on the Internet by blocking request to malicious domain by DNS
Cisco Umbrella (OpenDNS)
all-in-one web gateway that includes a wide variety of protections that can block hidden malware from both suspicious and legitimate websites
Cisco Web Security Appliance (WSA)
A system that passively monitors and analyzes network traffic for potential network intrusion attacks
Next-Generation Intrusion Prevention System (NGIPS)
is a collector and aggregator of network telemetry data that performs network security analysis and monitoring to automatically detect threats that manage to infiltrate a network
Cisco Stealtwatch
Two offering of Stealthwatch
- Stealthwatch enterprise
- Stealthwatch Cloud
Is a security policy management platform that provides highly secure network access control (NAC)
Cisco Identity Service Engine (ISE)
Standard for portbased network access control that provide authentication mechanism for local area network
802.1X (dot1x)
802.1X components
- Extensible Authentication Protocol (EAP)
- EAP Method (EAP Type)
- EAP over LAN (EAPoL)
- Radius Protocol
802.1X roles
- Supplicant
- Authenticator
- Authentication Server
an access control technique that enables port-base access control using mac-address of endpoint and typically used as a fallback mechanism of 802.1x
MAC Authentication Bypass (MAB)
