Juniper Networks AppSecure
Deliver Threat Visibility, Enforcement, Control & Protection over the Network.

AppSecure Overview:

AppSecure is a suite of next-generation security capabilities for Juniper Networks SRX Series Services Gateways that utilize advanced application identification and classification to deliver greater visibility, enforcement, control, and protection over the network.

By working in conjunction with the other security services of the SRX Series, AppSecure provides a deep understanding of application behaviors and weaknesses that prevent application borne threats that are difficult to detect and stop. As an integrated service on the world's fastest services gateways, AppSecure provides the scalability to meet the requirements of the most demanding environments. AppSecure runs on the Branch and Data Center SRX Series Services Gateways.

Application Visibility with AppTrack

By collecting byte, packet, session, and time, statistics while accurately identifying hundreds of applications, AppTrack gives network administrators detailed analysis of application data. AppTrack quickly and easily provides visibility into the types of applications traversing through the SRX Series gateway and allows classification based on risk level, user ID, zones, source, and destination addresses, as well as volumes.

This information can be used to assess adherence to usage policies, to help address bandwidth management, or to simply report on the most active users and applications. Juniper STRM Series Security Threat Response Managers can generate reports based on AppTrack application log data that extend their flexible and extensible methods to analyze data from a centralized location and take action.

Application Enforcement with AppFW

AppFW allows administrators to create fine grained application control policies to allow or deny traffic based on dynamic application name or group names rather than static IP/port information. It is designed to simplify security policies by using application white lists and black lists, as well as to define what actions to perform on matched traffic while taking default action against all other traffic.

Application Control with AppQoS

With the increased use of web-based customer relationship management (CRM), enterprise resource planning (ERP), and other business tools, network administrators need a way to prioritize business critical traffic over the network. AppQoS provides the ability to meter and mark traffic based on the application policies set by the administrator. This allows lower priority Web traffic to continue when network bandwidth allows, but ensures that mission critical traffic is delivered when usage levels surge. AppQoS is currently supported only for on SRX Series Services Gateways for the data center.

Application Protection with AppDoS

AppDoS distinguishes attacking botnet traffic from legitimate client traffic based on application-layer metrics and remediates against botnet attacks. Employing a multi-stage approach that includes server connection monitoring, deep protocol analysis, and bot-client classification, AppDoS provides the ability to detect subtle changes in traffic patterns and client behaviors that could indicate an application-level denial-of-service (DoS) attack. Once suspicious activity is detected, AppDoS can issue an alert, block offending IP addresses, or completely drop irregular sessions and packets. AppDos is typically deployed with the SRX Series' integrated IPS service to increase protection against malicious attacks.

Application Protection with IPS

IPS tightly integrates Juniper's latest and most advanced security features with the network infrastructure to provide threat mitigation and protection from a wide range of attacks and vulnerabilities. IPS subscribes to the results of application identification and contextualization to determine the appropriate protocol decoding and attack objects to use for the permitted incoming traffic that will be processed by the IPS software services module.