Juniper Expands Security Portfolio With Automation Capabilities

New capabilities and products announced by Juniper at its NXTWORK event aim to make security simpler to deploy and automate.

Juniper CEO Rami Rahim

Juniper Networks announced new security products and capabilities at its annual NXTWORK customer event on Dec. 13. The aim of the new capabilities is to make security simpler to manage and operate by automating security tasks.

Among the new security capabilities is the Junos Space Security Director, which now boasts automated policy management features. Juniper also announced a new Advanced Threat Protection Appliance, as well as the SRX4600 Next-Generation Firewall hardware.

"Cyber-security is top of mind for everybody, "Juniper CEO Rami Rahim (pictured) said during his keynote address at NXTWORK.

Before the internet, criminals were separated by distance and time from those they wanted to attack, Rahim said. The success of the internet has negated the time and distance factors and has put victims in reach of attackers, he added.

"It is the success of the internet that has made cyber-crime possible," Rahim said. "We believe that it is absolutely paramount that we overcome this challenge to make sure that the internet can scale to new heights in the future."

Software-Defined Secure Networks

The core of Juniper's approach to improving security is the company's Software-Defined Secure Networks (SDSN) strategy, which aims to provide an end-to-end fabric for security threat detection and enforcement.

"With SDSN, the entire network is managed as a single enforcement domain," Kevin Hutchins, senior vice president of strategy and product line management at Juniper, said.

SDSN is an open API based fabric that enables detection and collection of threat data from multiple control points, Hutchins said. SDSN is about taking advantage of all the elements that are available within a network, to understand what is going on and whether there are threats on a network, he added. 

The data from the network is analyzed and correlated using Juniper's Sky Advanced Threat Protection (ATP) service, which to date had only been available as a cloud service. Now Juniper is making the same protection available via an on-premises product—that technology comes Cyphort, which Juniper acquired in September.

"Both Sky ATP and the ATP appliance now leverage Cyphort's innovative analytics and remediation technology," Hutchins said.

Real-time information on detected threats is provided to Junos Space Security Director to automatically and dynamically apply policy updates across the network, according to Hutchins. Security Director is Juniper's security console for providing visibility and control of security policies. It is now being enhanced with a new automated dynamic policy action (DPA) capability.

"With DPA, Security Director offers full intent-based policy management, and it eliminates the manual work to create and deploy policies based on changing network conditions," Hutchins said.

Juniper has also improved Security Director to enable automatic provisioning of security policies for workloads deployed across multiple environments, including on-premises and the cloud. 

In addition, Juniper announced its new SRX4600 Next-Generation Firewall, which Hutchins said has been optimized for price and performance. The SRX4600 is a one-rack unit form-factor appliance that can provide up to 80G bps of firewall throughput.

"We keep making progress in advancing our vision for unified cyber-security that is pervasive, dynamic, automated and simple," Hutchins said. 

Sean Michael Kerner is a senior editor at eWEEK and Follow him on Twitter @TechJournalist.

Sean Michael Kerner

Sean Michael Kerner

Sean Michael Kerner is an Internet consultant, strategist, and contributor to several leading IT business web sites.