Juniper Brings Increased Security Intelligence to SRX Gateway
Security threats can come from many vectors, and so too can security information. Juniper's Secure Spotlight brings more intelligence to SRX gateways.
Juniper Networks this week is boosting its network security portfolio by bringing its Spotlight Secure threat intelligence technology to the SRX security gateway.
Juniper first announced the Spotlight Secure technology back in February of 2013. Spotlight Secure provides threat intelligence that can determine risk based on reputation and does not simply rely on an IP address to fingerprint a potentially malicious actor.
Spotlight Secure can now be integrated on Juniper's SRX gateways for improved threat detection and enforcement capabilities within an enterprise network. Alex Waterman, senior director of product management at Juniper Networks, explained to Enterprise Networking Planet that there is a clear need for better integration between threat detection and enforcement capabilities.
"This is the first time that customers are able to consume threat intelligence with the SRX around command and control as well as geo-ip," Waterman said. "We did have a previous integration on the SRX and Spotlight Secure around device fingerprinting, specifically for data center protection."
Going a step further, Juniper is now making it possible for its SRX customers to integrate intelligence from a number of other sources of threat data. One of the third party data integrations that the SRX now specifically enables is with endpoint protection vendor Lastline.
"So if customers have their own security feeds, we can take those in and make them part of the the holistic SRX security solution, to improve a company's security posture," Waterman said.
Going a step further, Juniper's Security Director feature now enables easier management of security policy in a network. Waterman explained that Security Director provides integrated management for Juniper products. Juniper also has SIEM (Security Information and Event Management) capabilities in its JSA (Juniper Secure Analytics) product that can be deployed alongside Security Director.
The updated SRX security capabilities announced this week are all part of Juniper's larger Argon Secure enterprise security effort. Juniper SVP and GM of Security Nawaf Bitar detailed the general idea behind Argon in a video interview with Enterprise Networking Planet in March of this year.
"This is the first phase of the Argon Secure release, where we're now providing protection against known command and control risks," Waterman said. "Next year we'll be expanding on Argon Secure to provide the on-premises analysis of malware at the enterprise edge."
Another piece that will land in future updates is broader Internet IP addressing support. Waterman noted that in its current iteration, the Argon Secure on SRX effort only provides visibility into IPv4 addresses. Waterman said that IPv6 visibility is coming in a future release.
Sean Michael Kerner is a senior editor at EnterpriseNetworkingPlanet and InternetNews.com. Follow him on Twitter @TechJournalist.