لطفا منتظر باشید ...
Chapter 1. What Is SAFE?
This chapter covers the following topics:
- SAFE: A Security Blueprint for Enterprise Networks
- SAFE: Extending the Security Blueprint to Small, Midsize, and Remote-User Networks
- SAFE VPN: IPSec Virtual Private Networks in Depth
- SAFE: Wireless LAN Security in DepthVersion 2
- SAFE: IP Telephony Security in Depth
- Additional SAFE White Papers
- Looking Toward the Future
SAFE is a network architecture blueprint developed by engineers at Cisco Systems. SAFE is intended to be a flexible and dynamic blueprint for security and virtual private networks (VPNs) that is based on the Cisco Architecture for Voice, Video, and Integrated Data (AVVID). The intention is to enable businesses to successfully and securely take advantage of available e-business economies and to compete in the emerging Internet economy with assurance. While the SAFE architecture lab was built on a "greenfield" modular approach, the benefits of implementing SAFE can be realized even if the architecture is not deployed in its entirety according to the white paper, "SAFE: Extending the Security Blueprint to Small, Midsize, and Remote-User Networks."The original SAFE blueprint, introduced by Cisco in 2000 in the white paper "SAFE: A Security Blueprint for Enterprise Networks," applied only to enterprise networks. Cisco has continued to expand and develop the SAFE blueprint, as published in various white papers, to encompass other network architectures such as small, medium-sized, and remote-user networks; IP te-lephony networks; wireless networks; and IPSec-based VPNs.SAFE also includes application notes that cover specific technologies in greater detail. SAFE "in-action" white papers cover how the SAFE blueprint and architecture can effectively mitigate attacks, based on experience from prior real-life events such as the Code-Red, Nimda, SQL Slammer, RPC DCOM, and W32/Blaster worms.SAFE tries to closely emulate the functional requirements of today's networks. It is first and foremost a security architecture. However, this does not mean that SAFE is a rigid architecture. Quite the contrary, SAFE is both resilient and scalable, using a modular design as the basic underlying architecture for the network. The following sections provide brief overviews of the major SAFE white papers that have been published to date, which include the following:
- SAFE: A Security Blueprint for Enterprise Networks
- SAFE: Extending the Security Blueprint to Small, Midsize, and Remote-User Networks
- SAFE VPN: IPSec Virtual Private Networks in Depth
- SAFE: Wireless LAN Security in DepthVersion 2
- SAFE: IP Telephony Security in Depth
Later in the chapter, you also learn more about the SAFE white papers that target specific security threats. To read the SAFE white papers, visit the SAFE website at http://www.cisco.com/go/safe.
