Juniper Networks has updated its connected security portfolio with encrypted traffic analysis for Juniper Advanced Threat Prevention (ATP) and SecIntel for the Mist platform wireless access.
With these additions to the Juniper Connected Security solution portfolio, Juniper delivers an offering to secure all traffic within an organisation, whether encrypted or unencrypted, throughout all parts of the network, whether access, campus, WAN or data centre, Juniper states.
Encrypted traffic analysis is the latest feature to Juniper ATP Cloud and SRX Series firewalls, capable of detecting malicious botnet traffic that is ‘going dark’ via encryption.
It permits organisations greater visibility and policy control over encrypted traffic, without requiring resource-intensive SSL Decryption. For customers running Juniper SRX firewalls, it also does not require additional hardware or network changes to set up and manage, Juniper states.
Industry analyst firm Omdia estimates that as much as 70-80% of enterprise inbound network traffic is now encrypted, which is up approximately 20% from three years ago.
As decryption is becoming a technical challenge with the adoption of Transport Layer Security 1.3, traditional information security tools cannot readily identify threats hiding in encrypted traffic, Juniper states.
To effectively detect threats such as botnets, hiding within encrypted traffic, Juniper’s encrypted traffic analysis allows for inspection by detecting traffic patterns.
In addition, in combination with technologies like SecIntel, encrypted traffic analysis provides a layered security approach that helps organisations reduce and manage risk, Juniper states.
When it comes to SecIntel for Mist, this represents a significant step toward complete integration of wireless access into the Juniper Connected Security strategy, says the company.
Mist customers can now get threat alerts detected by Juniper SRX Series Firewalls and ATP Cloud, allowing administrators to assess security risks when users and devices connect to wireless networks and take appropriate action via the Mist cloud or APIs, such as quarantining or enforcing policies.
This adds another layer of security to the robust mechanisms already in place within the Mist WLAN platform and builds upon Juniper’s vision of a Threat-Aware Network that leverages AI in IT for tighter security, lower operational costs and optimised user experiences, according to the company.
Juniper Networks VP of security business and strategy Samantha Madrid says, “To achieve the best results for our customers, we must take advantage of existing network infrastructure to create a Threat-Aware Network.
“Today, I am proud to announce that Juniper Connected Security is bringing even more security intelligence to the network through the detection of threats inside encrypted traffic and the integration of security intelligence into Mist.
“This builds on our Connected Security strategy, adding to the capabilities announced in 2019 where we expanded SecIntel capabilities across our MX Series routers and QFX and EX Series switches to enable all users, applications and infrastructures to be safeguarded across all points of connection on the network.”
Omdia senior analyst Eric Parizo says, “Encrypted traffic analysis is a critical capability that the industry needs now more than ever before and deserves consideration as a key component of a contemporary enterprise network and security portfolio.”
With these updates, Juniper Connected Security continues to equip organisations with the tools to guard against the latest advanced cyber-security threats, automate information security tasks and combine multiple defenses, the company states.
Reference:https://securitybrief.eu/story/juniper-networks-extends-connected-security-with-two-new-updates
