Worldwide [change] |Account |Register |About Cisco
Guest

Hierarchical Navigation

Cisco IPS 4200 Series Sensors

End-of-Sale Policy for Signature File Release on Intrusion Detection and Prevention (IDS/IPS) Sensors

Downloads

Products Affected

All shipping Cisco® IDS/IPS appliances, blades, and modules, including but not limited to Cisco IPS 4200 Series appliances, Cisco Catalyst® 6500 Series IDS/IPS blades, Cisco access router IPS modules, and Cisco ASA 5500 Series IPS modules.

Signature File Definition

A signature file is a package of network patterns, policies, and/or countermeasures developed for Cisco intrusion detection and prevention system (IDS/IPS) products. This signature package, used by the IDS/IPS products, enables the sensors to provide up-to-date protection for the evolving threat environment. These IDS/IPS devices compare network traffic (packets and streams) against data patterns within the signature file library. This comparison is used to detect and control unauthorized or malicious network traffic. Therefore, the signature file, once installed on an IDS/IPS product, becomes the signature database used to detect suspicious behavior and to provide protection against the latest vulnerabilities and exploits.

End of Signature Release Support Milestones and Conditions for Cisco IDS/IPS Signature Updates

1. Access to signature updates is limited to products covered under the current equipment list of an existing Cisco Services for IPS contract. The serial number of the product(s), chassis, or module must appear in the Cisco contract database for entitlement to signature file updates.

2. Cisco IPS signature updates include the following:

a) Signature file updates that are downloadable from Cisco.com

b) Cisco IPS Active Update e-mail bulletins notifying customers of the availability of new signature file update packages, threat information, or support

3. Updates to the Cisco IPS signature files are provided in accordance with the following terms:

a) Six (6) months of signature release support after first customer ship (FCS) of all minor and major software releases and twelve (12) months of signature release support after the end of sale of a major release

i. For major-to-major releases (e.g., Version"A".x to Version"B".y, where "A" and "B" are consecutive version #s): Minimum of eighteen (18) months of signature release support after the end-of-sale announcement of that older software release. This 18-month signature release support window consists of no fewer than six (6) months between the software end-of-sale announce date and the actual software end-of-sale date, and no more than twelve (12) months of signature release support after the software end-of-sale date.

ii. For minor-to-minor (e.g., v5.x to v5.y): Six (6) months of signature release support after the announcement of the availability of the new minor release (e.g., v5.y). Signature release support for the older minor release (e.g., v5.x) typically aligns with the end-of-sale date of the minor software release.

b) Signature update support for service packs of currently supported major and minor software releases will be supported for at least sixty (60) days following the introduction of a new service pack.

i. Operational flow (e.g., IPSv5.1(x) to IPSv5.1(y), where "x" and "y" are service pack #s): After the announcement of service pack "y", customers on service pack "x " will have at least sixty (60) days to migrate to service pack "y". During the sixty (60) day window, signature support will be available for both "x" and "y".

c) Signature support for hardware platforms that are past their end-of-sale date may be delivered through subsequent major or minor software releases available for that hardware platform. Customers will be required to upgrade to those new software releases to maintain signature release support.

d) Hardware products announced as reaching end-of-sale status are provided with software support for three (3) years. In the event that a major or minor software release is not supported on the end-of-sale hardware, Cisco will support signature releases for up to three (3) years after the hardware end-of-sale date on the last available software release for that hardware platform.

e.) The introduction of Engine updates in IPSv5.1(5)-Ex, IPSv6.0(1)-Ex (Where the "x" is the Engine#) and in releases going forward will be directly correlated to signature updates.

i. Operational Flow Example: When signature updates are released they will require the sensor to be running a minimum Engine#. For example IPS-sig-S280-req-E1, would require the sensor to be running IPSv5.1(5)-E1 and/or IPSv6.0(1)-E1.

f) New Engine updates created after declaring that a release has reached end-of-sale status will not be integrated in the software release that has been declared end-of-sale. Signature release support will only be provided for the existing set of signature Engines available for that release, thus affecting the completeness of signature coverage. New Engine updates will not be back-ported to older versions.

4. Cisco Technical Assistance Center (TAC) support, hardware support, operating system support, and application software support exclusive of signature release support (such as maintenance releases, bug fixes, and patches) is as defined in Cisco's current policy. Refer to Cisco's end-of-life policy at http://www.cisco.com/en/US/products/products_end-of-life_policy.html.

For More Information

For more information about the Cisco end-of-sale IDS/IPS sensors, visit http://www.cisco.com/go/ips or contact your local account representative.

MARKETING CONTACTS

ids-news@cisco.com