7,617 Tests Later, and Juniper’s Firewall Stops Threats Better
As Jonathan Davidson, executive vice president and general manager of the Juniper Development and Innovation organization, mentioned in his November 2014 blog “Juniper’s Security Strategy: Make the Network Resilient, No Matter What,” Juniper’s approach to security is layered and multi-faceted. Our goal is to ensure both protection and resiliency, and to do so through the use of analytics, security intelligence, multi-threat feeds, and advanced threat protection. Prevention, however, is still key to cyber security; specifically, the use of firewalls.
With that in mind, we decided to do some in-house testing, to see how our firewall solutions measured up against some of our competitors in terms of detecting and stopping attacks. The results are something that you may find interesting.
In January, we took off-the-shelf security testing tools such as Metasploit, Breakingpoint (now owned by Ixia) and Telus Security Labs exploit feeds, and compared our firewall solution’s performance to others in the market. We used the latest software and signature packs from the firewall vendors tested. We also configured each vendor to detect and block all critical, major and minor attacks.
These tests were focused on how well appliances detected and blocked malicious threats. The size of the competitor’s system, the amount of memory, and the cpu power was irrelevant. If you tested the competitor’s virtual appliance or hardware appliance the result would be the same when it comes to security efficacy. These types of tests are straightforward: Do you detect and block the malicious threats or not? 7,617 tests later, the results showed that Juniper’s solutions stop threats. Faster.
See the charts below. The results my surprise you. We are laser focused on security here at Juniper and this is just the tip of the iceberg. Stay tuned to this blog for more exciting insights into Juniper’s security.
Testing Methodology Details: HW/SW version/signature pack:
SRX 3400/ 12.1X46D30/ Juniper IDP Signature Database 2454
PAN 500/ 6.0.3/ Signature pack 454-2355
Fortinet VM/ 5.2.2/ Extended IPS DB: 5.00590