Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

Navigation
Guide That Contains This Content
[+] Expand All
[-] Collapse All

    J-Security Center Updates Overview

    The Juniper Networks Security Center (J-Security Center) routinely makes important updates available to IDP security policy components:

    • Detector engine. The IDP detector engine is a dynamic protocol decoder that includes support for decoding more than 60 protocols and more than 500 service contexts. You should update IDP detector engine when you first install IDP, whenever you upgrade, and whenever alerted to do so by Juniper Networks. You can view release notes for detector engine updates at https://www.juniper.net/techpubs/software/management/idp/de/.
    • Attack database. The attack signature database stores data definitions for attack objects. Attack objects are patterns comprising stateful signatures and traffic anomalies. You specify attack objects in IDP rulebase rules.
    • Application signature database. The application signature database stores data definitions for application objects. Application objects are patterns used to identify applications and match APE rulebase rules.

    J-Security Center updates are packaged and released separately from the IDP operating system and software code base to ensure IDP products protect your network against recently discovered vulnerabilities. We recommend you schedule automatic updates for the attack database and application database. For IDP Series devices, both databases are distributed in “signature database updates”.

    After you have completed the update, any new attack objects and application objects are available in the security policy editor. If you use dynamic groups in IDP rulebase rules and a new attack object belongs to the dynamic group, the rule automatically inherits the new attacks.

    Note: We recommend you subscribe to the IDP Signature Updates technical bulletin to be notified when J-Security Center releases IDP detector engine updates. Go to https://www.juniper.net/alerts/.


    Published: 2011-02-08