Attackers target data used by a variety of custom and commercial applications. Signature-only detection products can provide only a one-dimensional - and sometimes incorrect - response. Only Cisco uses broad network context through every stage of analysis, including passive OS fingerprinting, evasion techniques, and attack state across signatures, as well as - an industry first - attacker identity, location, and behavior. These state of the art techniques protect infrastructure and applications from Advanced Persistent Threats (APTs) and other sophisticated attacks for superior security protection.
The Cisco IPS 4500 series delivers hardware-accelerated inspection, real-world performance, high port density, and energy efficiency in an expansion-ready chassis for future growth and investment protection. Its small form factor and low power consumption were specifically engineered for space-challenged data center environments. With highly effective, out-of-the-box protection and automated threat management, your critical data center assets are protected in minutes.
Context-driven protection for critical internal applications
The modern enterprise runs a wide array of mission-critical commercial and highly customized applications. The data within those applications is a high-value target for attackers, yet access to that data is what drives the productivity and success of the enterprise. The challenge is providing full and rich access to authorized users while protecting the integrity of the data center infrastructure and applications. Context-driven intrusion prevention is essential for full protection.
Compliance met and risk averted
Commercial groups and government organizations have legal obligations to protect data from alteration, theft, and illicit access. Cisco's context-driven intrusion prevention enables secure applications and continued secure operations.
Seamless network integration
A critical component of the Cisco SecureX framework, Cisco IPS provides the most advanced network awareness in the industry. Whether defending the data center, network core, or Internet edge, Cisco IPS technology provides application- and infrastructure-centric protection. To reduce capital expenditures, Cisco IPS solutions are built upon a common software architecture that enables deployment anywhere in the Cisco network, including routing, switching, and firewall platforms. A consistent policy and operations framework help bring the system together to meet compliance requirements and manage risk at a lower operational cost.
Unparalleled global correlation
As advanced persistent threats (APTs), botnets, and other blended threats evolve, signature-based content inspection alone becomes insufficient to identify and mitigate threat activity. With 10 years of reputation technology experience, Cisco IPS with Global Correlation is the only IPS to mitigate identified attacks based on source reputation - not just a simple signature firing. Cisco IPS Global Correlation backed by Cisco Security Intelligence Operations (SIO) gathers information from hundreds of security parameters, millions of detection rules, and 8 TB of threat telemetry per day from market-leading email, web, firewall, and IPS devices - giving the Cisco IPS unprecedented visibility into real-time threats.
The Cisco IPS 4500 series provides low latency and high-availability features to meet the needs of the most demanding networks. With hardware-accelerated deep packet analysis, the Cisco IPS 4500 series delivers multi-gigabyte performance with dedicated space available for future IO and performance expansion. Flexible and highly available deployment options include active-active and active-standby configurations; fail-open or fail-closed modes; IDS and IPS operational modes; and redundant power supplies.
Complete control and real-time visibilityProduct Highlights
Cisco provides IPS management solutions for deployments of all sizes, from a small business to enterprise-class coverage. Cisco IPS manager express is an all-in-one IPS management and reporting application for up to 10 devices. Cisco security manager is an enterprise-class security management application with thousands of real-world deployments. A fully functional on-box CLI is available as well.
- Protocol anomaly detection
- Evasion identification and mitigation
- Application anomaly detection
- Pre-inspection reputation black lists
- Reputation-driven mitigation selection
- Compound signature analysis (disparate alerts combine to ID higher order threat)
- Customizable signature ratings: severity, fidelity
- Custom signature support