Cisco’s strategy for secure networks (SAFE) started with the
original “SAFE: A Security Blueprint for Enterprise Networks,” a 66-page plan to
provide best-practice information to those involved in designing and
implementing secure networks. SAFE represents a defense-in-depth approach to
network security design, focusing on the expected threats and the best ways to
mitigate those threats, rather than a single set of rules to follow. The result
is a “layered approach” to security design and implementation, intended to
prevent a failure of one security system from compromising the organization
network resources.
Since its introduction, the SAFE program has expanded to include
many other blueprints, including “SAFE Extending the Security Blueprint to
Small, Midsize, and Remote-User Networks,” and a growing number of SAFE
documents on topics such as wireless, IP telephony, IPSec VPN, Nimda attack
mitigation, and Code-Red attack mitigation. These white papers are available
free, without a CCO ID from the Cisco web site. To find the current list of
documents, either go to following web site or go to http://www.cisco.com and do a search
on SAFE: http://www.cisco.com/warp/public/779/largeent/issues/security/safe.html.
Tip
For the exams and for your own development in the industry,
go to the site and download at least the original “SAFE: A Security Blueprint
for Enterprise Networks” and become familiar with it. This provides a detailed
overview you can use to supplement all the chapters in this book. At a minimum,
review the foundation material in Appendix
B.
Sections
Comments (0 posted)
Syndication
