Академический Документы
Профессиональный Документы
Культура Документы
Cisco Confidential
Global Distribution Meeting (GDM) and Content Delivery Network (CDN) optimize user experience
GDM local switching Distributed Meeting st hub is selected with Globaleliminates traffic congestion to a single hub. Provides optimal in-meeting experience wit bandwidth
GDM
GDM
GDM
Cisco Confidential
Client download request to: customer.webex.com 6. CDN edge server gets client package from WebEx server. Cache the package for later use. 7. WebEx client download
Edge server
2010 Cisco and/or its affiliates. All rights reserved.
Attendee
Cisco Confidential 3
West Coast
First-time Presenter First-time Attendee
WebEx
Citrix
Netviewer
Adobe
Microsoft
Source: Lab Testing Summary Report- Web Conferencing, Report # 100716, Miercom Sept 2010
Cisco Confidential
WebEx Plug-in
ActiveX Java applet TFS Flash (Event center) MSI
Cisco Confidential
1)Users access site URL with browser, joins/starts meeting 2)Meeting Manager grants access, registers user, logs access 3)Ping Server identifies optimum CB reports info to client
4)Client establishes connection to best Collaboration Server 5)CB checks with Meeting Manager, grants access, establishes privileges
2 3
Cisco Confidential
CB
CB
Virtual MMP pool MCC MCS MCS MCS MCS MCS MCS
MMPDB
Cisco Confidential
Source: Lab Testing Summary Report- Web Conferencing, Report # 100716, MiercomSept 2010 . Tests were conducted in 2 different locations with different network access points. Total latency was calculated over a 13 slide PPT deck with various animations and transitions.
Cisco Confidential
CDN enables faster download of the Meeting Client binary to the attendee/host computer
GDM
GDM connects the attendee/host to the closest WebEx data center for faster communication in the meeting
Cisco Confidential
Cisco Confidential
10
Physical security
Cisco CSG Applications
Strict Access Controls Vulnerability Management
2-Factor Authentication
High Availability
Cisco Confidential
11
Network Security
Secure
128-bit SSL encryption standard 256-bit AES end-to-end encryption PKI optional Strict access control Data is switched, not stored Network Based Recording (NBR)
Data-at-rest protection:
Cisco Confidential
12
SSL encryption
SSL
Control
while on the public network SSL-enabled meetings are implemented by default in the WebEx environment
Meeting Data
Internet
Meeting Switches SSL Accelerator
Self-signed X.509 certificates used to exchange key Control data remains unencrypted to optimize switching of
Control
Meeting Data
Internet
Meeting Switches SSL Accelerator
of attendees AES encryption keys secured by digital certificates Certificate access support through Microsoft Crypto Libraries or Apple Macintosh Key Chains Support for multiple certificate authorities for each site WebEx will not provide Certificate authority services
Control
Meeting Data
Host certificate used to validate against CA CAs uploaded by Admin:
Internet
Meeting Switches SSL Accelerator Attendee certificate used to validate against CA
Cisco Confidential
15
AES
AES
AES/PKI does not support Network Based Recording Join before Host or Hybrid Audio PKI deployment is restricted to the Windows and MAC OS PKI requires an existing X.509 certificate infrastructure to
AES PKI PKI AES
be in place
2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 16
NBR Security
Administrator can set recording policies for each session
Disable recording Disable download Password protect downloads Disable forwarding links to recording
Cisco Confidential
17
Policy management
Policies can be used to manage and
During a meeting, the host can: Lock the meeting Eject attendees Assign presenter and annotation privileges Re-assign host role
2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 18
Collaboration security
Set meeting password Lock down meeting Eject attendees Disable share Host privileges Audio dial-in/dial-out control
Cisco Confidential
19
On an as needed basis Internal audits Performed as needed for Ciscos internal audit group SAS70 Type II audit Type II Targeted for completion in Feb 2011 ISO27001 compliance Targeted for completion end of 2011 Infrastructure and application security assessments Code assisted Pen tests by iSec Partners
Cisco Confidential
20
Integration points
WebEx offers 3 basic APIs as integration points In-Meeting Integration
Active Talker Mute/Un-mute Etc.
Login/SSO
Join/Start Meeting Page Authentication
TSP API
XML API
URL API
SAML is also available
Cisco Confidential
21
Data Conference
WebEx Firewall
Partner Firewall
Meeting Server
INTERNET
Audio Bridge
Telephony Server XML Communication to take place between WebEx Telephony Server and TSP Partner Adaptor Server
2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
22
Thank you.
Cisco Confidential
23