Cisco Application Centric Infrastructure Security Solutions
Simplify and accelerate data center, cloud, and app deployment
Cisco Application Centric Infrastructure (ACI) Security Solutions help secure next-generation data center and cloud environments by fully integrating security into the Cisco ACI network. Cisco ACI Security Solutions allows administrators to treat security as a pool of resources and intelligently stitch them to applications and transactions using the Cisco Application Policy Infrastructure Controller (Cisco APIC). Cisco's ACI Security Solutions scale on demand, have programmable automation, and operate in both physical and virtual environments.
Cisco's ACI Security Solutions allow organizations to take a holistic, system-based approach to data center security. They use a common policy-based operational model across Cisco ACI-ready networks, thereby reducing cost and complexity without compromising security.
Cisco Application Centric Infrastructure (ACI) Security Solutions allow organizations to take full advantage of the power, flexibility, and performance of their new ACI data center environments without compromising functionality or security.
For organizations migrating to or implementing an intelligent Cisco ACI fabric architecture, the Cisco ASA 5585-X appliances and ASAv instances create the quickest path to protecting the next-generation data center architecture. They eliminate the limitations of traditional network-oriented security solutions and provide the following features:
Because application flows within a Cisco ACI environment change dynamically, Cisco ASA security can be deployed as a service for any transaction flow, completely independent of the underlying topology.
The ASAv solution allows security to be distributed across the entire application environment and to dynamically scale as business demands change.
The ASAv allows security to be stitched into the data center fabric as well as selected and deployed as a virtual service based on policy on a per-transaction basis.
Unified configuration and visibility
Cisco ACI management tools provide a single point of network and security management, provisioning of security as a service, flow-policy control, and monitoring for a unified view of the infrastructure. At the same time, it allows for the contextual reuse of common security elements in an end-to-end design.
Policy set simplification
In traditional topology-oriented environments, policy rules are either pushed as a complete rule set or manually built and customized for each network device. With a services-based approach, each service element can be contextually programmed with only the security rules that are relevant to its specific transactions, creating a truly distributed and simplified policy set.