About Juniper

Press Releases

Navigation
Juniper Networks IDP Solution Wins 'NSS Approved' Certification

IDP 600F Appliance Demonstrates Performance, Security and Usability Excellence in Stringent Testing

SUNNYVALE, Calif., Aug. 9, 2005 - Juniper Networks, Inc. (Nasdaq: JNPR) today announced that its IDP 600F intrusion detection and prevention (IDP) system has achieved the respected "NSS Approved" certification by the NSS Group, a leading security products testing organization. The Juniper IDP 600F appliance, with its recently announced version 3.1 IDP operating software, received the NSS certification after a rigorous and comprehensive testing evaluation of performance, security effectiveness and usability - supporting its goal to deliver secure and assured networking solutions to customers worldwide.

"Juniper's powerful alert handling, reporting and forensic analysis make the IDP 600F one of the strongest products that we have seen," said Bob Walder, director of the NSS Group. "Our stringent testing proves that the Juniper IDP solution could be deployed anywhere on a 500 Mbps network, either internally or at the network perimeter."

Designated as "NSS Approved" means customers can be confident that the IDP device will not significantly impact network/host performance, cause network/host crashes, or otherwise block legitimate traffic. The NSS Group subjected the Juniper Networks IDP 600F to a brutal battery of tests that verify the stability and performance of the product, determine the accuracy of its security coverage, and ensure that the product will not block legitimate traffic. Highlights of the NSS Group test results include:

  • Performance - The IDP 600F is rated at 500 Mbps when deployed in-line, and performance at almost all levels of testing was very good, with 100% of all attacks being detected and blocked under all but the most extreme load conditions.
  • Security Effectiveness - Even when pushed beyond its limits, the IDP 600F continued to block all malicious traffic successfully. Signature recognition was excellent at 97%, and with the HTTP server-to-client signatures enabled, the attack recognition rose to 100%. All false negative exploits thrown at the IDP 600F were caught, indicating that the signatures look for the vulnerability, not the specific exploit itself.
  • Usability - The management solution for the IDP 600F performed significantly better that others tested when under heavy attack, with little or no interruption to communication between sensor and management server. Policy management was found to be very strong with the ability to configure individual rules within a policy for individual sensors.
  • Reporting and Forensics - The wealth of useful reporting and forensic tools in IDP 600F takes IDP beyond pure intrusion prevention and into the realm of policy enforcement. The product's Enterprise Security Profiler helps administrators monitor the network security posture by collecting forensic data on network traffic and storing that data to form a network profile.

The award-winning Juniper Networks IDP platform provides inline attack protection against worms, Trojans, spyware and other current and emerging threats. Using multiple detection methods and full application layer inspection, the Juniper IDP solution accurately identifies attacks and minimizes the number of false positives. The IDP solutions also combine an open signature format with extensive customization capabilities and can compensate for a range of operating system vulnerabilities that allow attackers to gain control of affected systems.

The complete NSS test results are available at http://www.nss.co.uk/ips.

About the NSS Group

The NSS Group is the world's foremost independent security testing facility. With British headquarters, and security and network infrastructure testing facilities in the South of France, the NSS Group offers a range of specialist IT, networking and security-related services to vendors and end-user organisations world-wide. Output from the labs, including detailed research reports, articles and white papers on the latest network and security technologies, are made available on the NSS web site at http://www.nss.co.uk.

About Juniper Networks, Inc.

Juniper Networks is the leader in enabling secure and assured communications over a single IP network. The company's purpose-built, high performance IP platforms enable customers to support many different services and applications at scale. Service providers, enterprises, governments and research and education institutions worldwide rely on Juniper Networks to deliver products for building networks that are tailored to the specific needs of their users, services and applications. Juniper Networks' portfolio of proven networking and security solutions supports the complex scale, security and performance requirements of the world's most demanding networks. Additional information can be found at www.juniper.net.

Juniper Networks, the Juniper Networks logo are registered trademarks of Juniper Networks, Inc. in the United States and other countries.

This press release contains specialized projections, statements and data provided by third parties. Juniper Networks does not adopt these projections, statements or data, does not warrant or guarantee the accuracy or completeness of such data or statements and does not undertake or assume any duty to update them in the future.