A fundamental fiduciary responsibility of any Chief Information Security Officer (CISO) is to protect the information/data assets of the organization they are a part of. There are many different approaches that can be taken to achieve the level of data protection that the organization desires, with an eye to lowering their overall information risk levels while managing the cost of protecting information. Read more...

"In theory, there is no difference between theory and practice. But, in practice, there is." Yogi Berra This week was a busy one for those involved in the field of cryptography. Around this time every year "Crypto", the annual conference for the International Association for Cryptologic Research is held on campus at the University of California, Santa Barbara but this year it was co-located with a couple of other related events. Overlapping with Crypto was "CHES", the workshop on Cryptographic Hardware and Embedded Systems, which is also an IACR event, and following on from these two NIST (the National Institute for Standards and Technology) are holding the second SHA-3 Candidate Conference as part of the process of selecting the next standard for a cryptographic hash function. I attended the Crypto conference and also took advantage of the “reciprocal hospitality” arrangements with CHES to attend a number of their sessions. Sadly, I didn't get to go to the SHA-3 conference but there was a great deal of discussion of the candidate algorithms at the other two events. Read more...

The latest security buzzword is APT: Advanced Persistent Threat. Is APT important and should we be concerned? I’m afraid the answer to both these questions is “yes.” But knowledge is power. If we understand APT, we can learn how to protect against it. Previously, most external threats to commercial enterprises came from hackers and criminals. These threats are generally opportunistic and unoriginal. Everyone’s money is equal so criminals and hackers focus on the softest targets. If one defender is more secure than average, these attackers focus elsewhere. And the tools they use are nothing special, just prebuilt exploits that they bought on the Internet. This is similar to home security. You don’t need perfect security. If your security is clearly better than your neighbor’s, the thieves will go to his house. And their burglary tools will come from the hardware store: crowbars and screwdrivers. Read more...

Welcome to the new Juniper Networks security blog! Here at Juniper a great many of us have been working on new technology for securing the New Network; this blog is a way for us to share with you some of the things we have been up to. Over the coming weeks and months we will be discussing a variety of topics and examining them from a number of angles. We will be looking at new threats as they emerge and talk about the new technologies we are developing to counter these threats. We will be looking in depth at security incidents in the news as well as reporting on the wider trends in the security marketplace. We will also be offering our insights into the comings and goings at the major Information Security conferences and events. We hope you will enjoy hearing what we have to say as well as learning something in the process! Read more...

Today’s enterprise network is likely a converged environment, in which not just data but voice, video and other types of traffic flow over the same IP network. In these networks, the ability to support Power over Ethernet (PoE), which provides power for IP-enabled devices via the network, is a critical requirement. Read more...

This week Juniper announced our role as a founding member of the Unified Communications Interoperability Forum, or “UCIF.” Working with existing standards, the UCIF will create certification programs that validate interoperability when products are used in real-life situations Read more...

Juniper now offers an entry-level switch for the branch and low-density wiring closet: the EX2200. While the EX2200 does address this important part of the market, delivering a wire-speed IPv4/IPv6 unicast and multicast solution for all packet sizes, it is much more than that. It is also extending the Junos operating system further into the enterprise, and doing so at a very affordable price. Read more...

The new Juniper Networks EX2200 Ethernet switches, designed for branch offices and low-density wiring closets, include a number of features designed to make life easier for network administrators. Read more...

In October 2009, Juniper introduced a new silicon chipset, Junos Trio, which dramatically transforms quality of end-user experience and business economics for service providers worldwide. Before introducing the Junos Trio chipset and associated products to the market, Juniper asked the European Advanced Networking Test Center (EANTC) to validate the capabilities of the Junos Trio chipset as embodied in the Juniper Networks® MX80 3D Universal Edge Router and the new 16x10GbE line card. This post summarizes the results of this test Read more...

Attachments:

mx960_sml.jpg 50 KB

Product managers like me live to launch new products. By the time we take our first order, we've made thousands of decisions, considered hundreds of ideas, and heard from dozens of customers. It's a long road. In the specs-driven and detailed world of technology, keeping track of the big picture can be tough. So I thought I'd write a few words about what we had in mind for our new AX411 Wireless LAN Access Points. Read more...

As you may be aware, late last week a vulnerability in TLS, which may have also been referred to as an HTTPS vulnerability, was disclosed to the public (http://extendedsubset.com/Renegotiating_TLS.pdf). As with most high profile vulnerability releases, there has been a lot of incorrect assumptions made about this issue and the impact. This post will hopefully help combat the unnecessary fear and chaos. Read more...

In June 2009 Juniper announced a solution for Next Generation Transport of TDM and Voice over IP/MPLS that enables enterprise organizations and service providers to transform their networks, while keeping both operational and capital equipment cost at a minimum. Read more...

In July, Juniper announced a brand new JUNOS Fast Track Certification Program, featuring a limited-time offer of 100% discounts on all JUNOS Enterprise Certifications. To say the program was a smash success would be a gross understatement. Read more...