Ã /¶#Ê-j òF $ $v - Global Home Page€¦ · ò"F"Î þ2Z Ú ¢.Z$ÿ% ú Training and...

(kiseo@cisco.com)

Cisco Systems Korea

Agenda

Threats Are Becoming Increasingly Difficult toIncreasingly Difficult to Detect and Mitigate

Financial:Theft and Damage

Fame:Viruses and Malware

Notoriety:Notoriety:Basic Intrusions and Viruses

1990 1995 2000 2005 2007 2010

Writers Middle Men Second-Stage Abusers

First-Stage Abusers End Value

Compromised

Tool Writers Hacker or Direct Attack

Malware Writers

Extortionist DDoS for Hire

Compromised Host and

Application

B t t C ti

Espionage

WormsMachine

Harvesting Spammer

Botnet Creation

Botnet Management

Espionage

Extortion

Viruses

T j Internal Theft

Information Harvesting Phisher

Pharmer/DNS

Management

Personal Information

Commercial Sales

Fraudulent

Spyware

Trojans Internal Theft Abuse of Privilege

Poisoning

Identity TheftInformation Brokerage

Fraudulent Sales

Click Fraud

Electronic IP Leakage Financial Fraud

Source: 2007 CSI Survey

, DDoS

Training and StaffingPolicy ImplementationPolicy ImplementationTraining and Staffing

Event Sharing and Collaboration

Configuration and ManagementConfiguration and ManagementEvent Sharing and Collaboration

Threat Intelligenceg

Threat Intelligence

AV G WA

URSSSe

Mam Fi

Firewall

ork IPS

IPsec VPN

Host IPS

AV Gatew

ApplicationFirew

L Filter

SSL VPN

Security M

anage-m

Firewall

I t ti I t th N t k I f t t

irewall

etwork

sec VPN

ateway

ost IPS

plicationrew

RL Filter

SL VPN

ecurity anage-m

irewall

Integration Into the Network Infrastructure

Integrated Adaptive CollaborativeIntegrated Adaptive Collaborative

NetworkSecurity

ApplicationSecurity

EndpointSecurity

ContentSecurity

Anti-VirusAnti-SpywareH-IPS

FirewallN-IDS / IPSRouter

Anti-PhisingContent FilteringEmail Security

XML F/WApplication F/W

H-IPSAccess Control

RouterSwitch

Email Security

T ffi C t l Vi P ti M l P ti A Att k P tiTraffic ControlWorm PreventionACLL2 Security

Virus PreventionHost ProtectionNetwork AdmissionControl

Malware PreventionURL FilteringAnti-SpamData Loss Prevention

App. Attack PreventionXML Packet Inspection

Port 25 Port 80Content Security

Port 25 Port 80

Network Security

Locked the Network Doors, but E-Mail and Web Stayed Open

Custom Web ApplicationsCustomized Packaged Applications

Internal and Third-Party Code75% Business Logic and Code

Operating

DatabaseServers

Operating

ApplicationServers

Operating

WebServers

Network

gSystemsSystems

gSystems

Network Firewall

IDS/IPS

“50% of enterprises and government agencies are using XML, Web services or SOA.” Source: Gartner

“XML accounted for 15% of internet traffic in 2005 By 2008 it is

“50% of enterprises and government agencies are using XML, Web services or SOA.” Source: Gartner

“XML accounted for 15% of internet traffic in 2005 By 2008 it is

XML accounted for 15% of internet traffic in 2005. By 2008, it is expected to account for 50%.” Source: 451 Group

0111111010101000100001000100111110

ACLFirewall

Application Recognition(NBAR)

N-IDS / IPS XML F/WApp. F/W

DDoS SolutionH-IPS

RFC2827uRPFCoPPN tfl

(NBAR)Flexible Packet Matching(FPM)F/W w/ App. EngineC t t S it

App. F/W H IPSEmail SecurityDNS Safeguard

NetflowL2 Security

Content Security

Packet InspectionWorm App. Attack DDoS Protection

TCP/UDP Malformed App.Prevention Protection Data LossPrevention

ApplicationInspection

ASA 5500 SeriesCat6K Sup32-PISAACE XML Firewall

Content

ACE Application Firewall

IronPort S Series (Web Security)ContentSecurity

IronPort S Series (Web Security)IronPort C Series (Email Security)

EndpointSecurity

NAC ApplianceCisco Security Agent (CSA)

DDoS AttackPrevention Guard and Detector

InternetGuard

ASA5500

DMZI P t

Detector

DMZIronPortS Series

ACE XML Fi ll

IronPortC Series

ACE XML FirewallACE App. Firewall

Campus

AccessSwitch Security

Access

Cat6K Sup32 PISA

Distribution

Cat6K Sup32-PISANBARFPM

NACA li

0111111010101000100001000100111110

Appliance

Core Switch Security

CoreSwitch Security

AggregationXML FirewallApp. Firewall

Switch Security

Switch SecurityAccess

Switch Security

CSADetector

Ã /¶#Ê-j òF $ $v - Global Home Page€¦ · ò"F"Î þ2Z Ú ¢.Z$ÿ% ú Training and...

Documents

Æ Â l ú Æ Â Ì % * l ú P Ð G v A ë l ú Ô Þ s { ü / ê ÿ ÿ ¤ ¦ â T º ...chiiki-grn.jp/Portals/0/data/list/h28/熊本県.pdf7$.$2 ½ Á 5 ÿ _ ÿ ¤ | â ê è Ì ²

ýŸрезентация-готов-ПДФ.pdf · ý þ ü ñ þ î ú ú î mba « û ÿ » iv МОДУЛЬ: УПРАВЛЕНИЕ ФИНАНСАМИ – 216 ч. • Финансовый

ÿ 1$p¥>VÏºØL¹È| y õk0r05 ú[i ¤3atFF0È×¯ · Title j `÷« vâ¥7%ÙñK k \ÿ 1$p¥>VÏºØL¹È| y õk0r05 ú[i ¤3atFF0È×¯ Author: ú Á Þß¹È7Ä~a÷* ñ,kQiç°Ü1È

ENGLISH MYANMAR 2 0 - Mitsubishi Corporation...& ( & 4 & ÿ ' Y ú F x .R\DWD ,ZDVDNL D þ 0 d ú $ / û 1 ú 0 1 $ / ) E ) 2 û û - 1 ú 0 & ( & 4 & ) ú $ 0 % ' ) / 4 þ 0 / 0LWVXELVKL

Ü û þ î ú õ ÷ ÷ û ý õ þ ÿ ï í í · @'"2"! %,%'(4"&2.!"#'$#%&%%' ()"

Best Collaboration (Service) Gold Award ÿ 1 ¾ ' # >Ú l>Û2 · 18 Best Collaboration (Service) Gold Award ÿ 1 ¾ ' # >Ú l>Û2 HK-China Electronic Cargo Manifest Service r û4ê

^sb 31 ^t^¦ÿNäT QC^t^¦ÿ vzlèN [ ]åN ÿ ¿ T è0û^ú -]åN … › rdb › kyushu › kensetsu › kyushu › yotei › ...^sb ÿ ÿ ^t^ (NäT QC^t^ ÿ vzlèN [ ]åN ÿY fô0

e g b b i j h ] j Z f f u g Z 2016-2017 ] h ^ u · Õ þ ü û ø ô û ï í ú ú ò û î û ô ú í ò ú õ õ ü ý ò ñ þ ÿ í ï ø ò ú õ ò ù í ÿ ò ý õ í ø

ES 269-1: CEMENT TILE, Part 1: SPECIFICATIONS · ú ÿ / ü û ù ù þ / ú- û ÿ û ù ù þ/ ú- û ÿ á Õ á ð ð ð ã ª ð Ø ã ﺎﻴﻨﻓ ﺔﻠﺜﺎﻤﺘﻤ ﻰﺘﻨﻤﺴﻻﺍ

ES 687-1: GUAVA JUICES PRESERVED EXCLUSIVELY BY … · ú ú/ þ û ù ù þ / ú- ÿ ﺭﻴﺼﻌﻟﺍ ﺹﺍﻭﺨﺒ ﹰﺎﻅﻔﺘﺤﻤ ﻅﻴﻭ ﺱ º١٨ ﻰﻠﻋ ﺩﻴﺯﺘ

· ÷ øvù#ú ûü ý.þ$ÿ #ûü|û #ú û #ü|û #ù#ü ü ü^û ü #û"! ú û # ü #$# ø %'& ( øvü #% ü^û ü^û

ES 3168-6: CERAMIC TILES, Part 6 :DRY PRESSED CERAMIC … · 2017-09-29 · ú / ü û ù ù þ/ ÿ- ü ú ÿ ٢٠٠٥ / ÿ # ü ú ÿ ﻡ . ﻕ . ﻡ: ﺔﻤﺩــﻘﻤ ﻁﻼﺒــﺒ

Psicoeduca...Psicoeduca zione: i l P a n i c o e l'A n s i a s ©·· ³ ³²« ¹ r A Ú ÷ ÷¹úÿ û ÷¹ú÷¹Øû ÿ ¹Ú ýÿ ¹ Scaricabile da alessiocongiupsicologo.it PSICOEDUCAZIONE:

£ 2,+%# $ o 9 o Q.O T ( Q ] o M o D o · q Ö4Ù ¯ Ï t9Ô JICA 9Õ ê P : é 2 û 7 ü Ú ü . 5ô. ÿ æ 0 Ì á P : » ÿ ½2 /ç Ã á ¯ P : ¢!Û" æ&µ ú ' Ö Ú J ` # \

œ¸¢© ¸Ÿ¸ ®¸½°¸ú¡¸ ¢¨¸Ô¸º÷¸ ¬¸¢Ÿ¸¢÷¸ · nabinagar (1000mw) of railways and ntpc, barh-ii (1320 mw), rihand-iii (1000mw), vindhyachal-iv (1000mw) and

IPTV &IPTV & * Þ Z Ú 2 Ú /¶#Ê-· òF% ³ · "/¶#Ê-j$v2 z ò"F$V# Leading Practice CategoryLeading Practice Category Examples Protects Against ThreatsProtects Against Threats

× ´£¿ÄÜ+é Ü; - Panasonic...Mx ÿ ÿ ÿ ¢ s ü£ N E ÿ E ÿ ¨µ E ÿ + E ÿ N E ÿ ?> E ÿ + E ÿ s üw + E s üw¯µÄp z o q Þ y Z Ú E Ô ?;»®À+q&." )% ?> ï+ M; ;

zì b à C K R D C ; 1 ú â ÿ à D

Transportation Safety Board | Reports | Aviation, Rail, Marine ... this page%PDF-1.6 %âãÏÓ 133 0 obj >stream Ú~Æ./Ÿ» Ç Ï„ ›–:7AË œ1 þÃ•x\ v œ j Ñø¥¬ú>ú‚ÝœA

IBM Research Report · 'þrü I"5$ +A ½þ þrù ½ù:ú $ ¼ÿ 5 ý % ú _, þrû 2 F Jú *8 û ý¼û D 2 ÿ \ý¼û 8 þrû ý [ú I d @þ ý¼ùhþ