BreakingPoint & Juniper RSA Conference 2011 Presentation: Evaluating The Juniper SRX

•

2 likes•559 views

The document discusses evaluating the Juniper SRX firewall through testing with BreakingPoint Storm CTM. It lists 5 keys to evaluating the SRX, including stateful traffic validation, performance under massive and attack loads, protocol decoding accuracy, and detection of obfuscated attacks. The testing uses real attacks, applications, and unprecedented traffic levels up to 120Gbps and 90 million concurrent TCP sessions to validate the performance and security of the Juniper SRX.

Evaluating The Juniper SRX
February 15th at 1:30 pm

IT Firestorm Threatens Business Performance

5 Keys to Evaluating The Juniper SRX: #1

Stateful Traffic Validation

4

5 Keys to Evaluating The Juniper SRX: #2
Performance Under Massive Load

5

5 Keys to Evaluating The Juniper SRX: #3
Performance Under Load + Attack

6

5 Keys to Evaluating The Juniper SRX: #4

Performance and Accuracy of Protocol Decoding

7

5 Keys to Evaluating The Juniper SRX: #5

Detection of Obfuscated Attacks

8

How? Attack Thyself!
Real Attacks
• 4,500 live security attacks
• 100+ evasions
• Malware
• Spam
• DDoS and Botnet simulation
• Custom attacks
• Research and frequent updates

Real World Applications
• 150+ application protocols
• Social media, peer-to-peer, voice, video
• Web and enterprise applications, gaming
• Custom applications
• Frequent updates

Unprecedented Performance
• 120 Gbps blended application traffic
• 90M concurrent TCP sessions
• 3M TCP sessions/second
• 38 Gbps SSL bulk encryption

Validating The Juniper SRX

Client
Simulation
150+ Blended
Application
Traffic (ex: MySQL, Oracle,
HTTP, etc.) +
4500+ Live
Security
Strikes
+
Millions of Sessions

BreakingPoint Storm CTM

This document discusses securing virtualized and cloud environments. It notes that virtualization is becoming a common architecture for clouds, but security is a top concern for adoption. The challenges of securing virtualized environments are described, such as lack of visibility and difficulty with continuous enforcement. The goal is to enable secure clouds while retaining control. The ideal solution is described as using a hypervisor-based security architecture, with an engine embedded in the hypervisor, to provide granular security while minimizing overhead. Traditional validation approaches are discussed along with a proposed approach using BreakingPoint to effectively stress infrastructure and validate security under high load conditions.

BreakingPoint & Fortinet RSA Conference 2011 Presentation: Evaluating Enterpr...Ixia

��

Firewall Testing MethodologyIxia

��

This document outlines a methodology for thoroughly testing firewalls under realistic conditions to evaluate their performance, security, and stability. The methodology includes baseline tests of maximum connections, throughput, and attack mitigation against SYN floods and malicious traffic. It then tests application traffic combined with SYN floods and malicious traffic to evaluate how firewalls perform under blended realistic workloads. The goal is to more accurately reflect real-world performance compared to traditional testing methods.

LTE TestingIxia

��

Testing High Performance FirewallsIxia

��

Testing firewalls can be an exact science. Learn how Fortinet tests their firewalls using BreakingPoint. This presentation details how to test firewalls with real-world application traffic, load, and live security attacks. This presentation was given by Fortinet in the BreakingPoint booth at Interop 2011 and included their announcement of the FortiGate 3950B's Resiliency Score of 95, the highest ever published.

Cisco asa fire power servicesTapan Doshi

��

This document discusses Cisco ASA FirePOWER Services and Next-Generation Firewalls. It defines Next-Generation Firewalls as integrated platforms combining traditional firewalls with additional filtering functions like application firewalls, IPS, web filtering, antivirus inspection, and identity management integration. It describes the features of Cisco ASA 5500-X series firewalls with FirePOWER Services modules, including application control, identity control, security intelligence, IPS, URL filtering, advanced malware protection, file blocking, and SSL decryption. It provides examples of how traffic is analyzed and how the Cisco ASA integrates with the FirePOWER module.

FireSIGHT Management Center (FMC) slidesAmy Gerrie

��

The FireSIGHT Management Center (FMC) provides concise summaries of security events in 3 sentences or less by leveraging extensive network, endpoint, application and threat intelligence data. It improves security operations by reducing the number of tools needed to understand events, shortening the time to scoping and containment. The FMC also automates the correlation of critical events to identify indicators of compromise and focus security teams on remediation.

IPS Test MethodologyIxia

��

Cisco asa cx firwewallAnwesh Dixit

��

The document discusses Cisco's next-generation firewall called Cisco ASA CX Context-Aware Security. It blends traditional stateful inspection firewall capabilities with additional network-based security controls like application visibility and control, web security, and IPS. It uses device awareness, user identity, network reputation, and other context to apply differentiated security policies. The firewall provides high performance with increased throughput and connections compared to previous Cisco firewall models.

Deploying Next Generation Firewalling with ASA - CXCisco Canada

��

Pxosys Webinar Amplify your Security🏆Ruben Cocheno💭

��

Cisco and Pxosys teamed up for this Webinar, we will walk you through the Threat Landscape and recent DNS Ransomware cases, and explain why DNS Security is important in your Security Stack within your Organization. We are going to look on a Cisco Umbrella Live Demo and see the potential of the platform from the easy deployment, reporting, and blocking & mitigate Threats from day Zero. A Q&A is going to end the event to clarify any questions that arise during the demo event. Attendees will receive a Cisco Umbrella Free Trial (30 days) at the end of the event. Visit www.pxosys.com to know more about us.

Vision one-customerMarie-Agnès PONS

��

Hillstone-Corporate-Overview-EN-V3.0Shamal Abeyrathne

��

Hillstone Networks provides intelligent firewall solutions that use behavioral intelligence to detect threats. They have over 10,000 customers globally across various industries. Their intelligent firewalls can detect both known and unknown threats through abnormal behavior detection in minutes rather than months. This allows them to find modern attacks that evade traditional signature-based defenses. They offer solutions for both enterprises and data centers to provide perimeter security as well as internal micro-segmentation of virtual machines in private and public clouds.

Protection and Visibitlity of Encrypted Traffic by F5Bangladesh Network Operators Group

��

This document discusses the challenges of encrypted traffic inspection and proposes an SSL security service orchestration solution. Some key points: - 70% of internet traffic is now encrypted, making traditional network security tools like firewalls and antivirus less effective. - Directly decrypting and inspecting SSL traffic at multiple points (daisy-chaining) has issues like reduced performance, increased complexity, and single points of failure. - The proposed SSL security service uses a full proxy architecture to classify, decrypt, and re-encrypt SSL traffic dynamically based on policies. It sends traffic through reusable security services and scales dynamically. This provides a centralized solution to inspect encrypted traffic.

Cisco umbrella youtubeDhruv Sharma

��

Security at the Speed of the NetworkHantzley Tauckoor

��

This document discusses security automation through SDN and NFV. It begins with an overview of security challenges from a service provider perspective, such as growing traffic and threats. It then discusses how SDN can automate and accelerate DDoS mitigation by redirecting traffic. The document outlines Cisco's Firepower 9300 platform for integrated security services and its use with Radware virtual DDoS protection. It also discusses how the Cisco Application Centric Infrastructure automates security policy and service chains in the data center.

Cisco ASA FirewallsBryley Systems Inc.

��

Cisco's ASA55xx series are adaptive security appliances that provide firewall, IPSec and SSL VPN capabilities. The appliances range from small office/home office models like the ASA550x to data center models like the ASA558x. All models support stateful packet inspection firewalls and VPN endpoints. Optional modules allow for intrusion prevention, content filtering, and additional network interfaces. Licenses determine the number of supported VPN connections and interfaces/VLANs.

ASA Multiple Context TrainingTariq Bader

��

The document discusses Cisco ASA firewall contexts, which allow virtualizing a single physical ASA device to act as multiple independent firewalls. Some key points: - Contexts have their own routing, filtering, and address translation rules within an ASA in either routing or transparent mode. - Features like VPN, dynamic routing, and QoS are not supported in contexts. Contexts are used when multiple security appliances are needed on one device. - The system context manages interface allocation and other settings for all contexts. The admin context provides system-level access. Normal contexts are user-defined partitions. - Physical interfaces can be allocated to contexts. Contexts also have resource limits defined through resource classes to

Checkpoint Firewall for Dummies sushmil123

��

Checkpoint provides specialized firewall capabilities through its focus on connection-based inspection and granular traffic control methods like packet filtering, stateful filtering, and application aware filtering. It uses a three-tier architecture with a management server, security gateway enforcement units, and client software. Checkpoint firewalls can be deployed in standalone or distributed configurations to securely manage networks with multiple DMZ zones, applications, and client requirements.

SANGFOR NGAF FIREWALL SG TECHNICAL PVT LTD 03002019693 Muhammad Adeel Kazim⭐⭐⭐⭐⭐

��

Cisco Network Insider: Three Ways to Secure your NetworkRobb Boyd

��

These are the slides from our Tuesday Jun 14, 2016 webinar featuring three building block technologies for quickly adding a ton of value to your security efforts. Watch the Replay: http://bit.ly/1UhUZ1J We covered: - Identity Services Engine (ISE)- visibility and control…along with a solid set of sharing capabilities. Using ISE you can see the device types and control access to the network – and share what they see with Stealthwatch.�� - Stealthwatch - Visibility with even more network elements…work in conjunction with ISE but adds behavioral analysis Using Stealthwatch you can see the behaviors of the devices and determine if they are infected with malware or ransomware – and then use the network to take action to contain from a single screen.�� - Cisco Defense Orchestrator (CDO) - Cloud platform that analyzes security policy configurations for Cisco ASA Firewalls and OpenDNS. It identifies and resolves policy inconsistencies, models policy changes to validate their impact, and orchestrates policy changes to achieve consistency and clarity of your security posture.

Inherent Security Design Patterns for SDN/NFV DeploymentsOPNFV

��

Putting Firepower into the Next Generation FirewallCisco Canada

��

This document provides an overview of Cisco's next generation firewall capabilities. It discusses Firepower Threat Defense software that provides firewall, intrusion prevention, application control, URL filtering, advanced malware protection and other features. It also reviews the various Cisco platforms that run Firepower Threat Defense, including the ASA with Firepower Services, Firepower 2100/4100/9300 appliances and virtual form factors. The presentation covers deployment options, new capabilities in 6.2.2, segmentation techniques, performance optimization features, and management options through the Firepower Management Center, Firepower Device Manager or Cisco Defense Orchestrator.

Cisco ASA Firewall Presentation - ZABTech center HyderabadMehtabRohela

��

Cisco ASA is a network security appliance that combines firewall, antivirus, intrusion prevention, and VPN capabilities. It provides threat defense by monitoring network traffic and can deny or permit access between internal and external networks. Key features include packet filtering, network address translation, application inspection, VPN support, and high availability options. The ASA can operate in routed or transparent firewall modes and supports authentication, dynamic routing, clustering, and next-generation firewall features like advanced malware protection. It is suitable for both small and large networks due to scalability and modular design.

Ransomware-Recovery-as-a-ServiceSagi Brody

��

Evaluating Network and Security Devicesponealmickelson

��

More Related Content

What's hot (20)

Testing High Performance FirewallsIxia

��

Cisco asa fire power servicesTapan Doshi

��

FireSIGHT Management Center (FMC) slidesAmy Gerrie

��

IPS Test MethodologyIxia

��

Cisco asa cx firwewallAnwesh Dixit

��

Deploying Next Generation Firewalling with ASA - CXCisco Canada

��

Pxosys Webinar Amplify your Security🏆Ruben Cocheno💭

��

Vision one-customerMarie-Agnès PONS

��

Hillstone-Corporate-Overview-EN-V3.0Shamal Abeyrathne

��

Protection and Visibitlity of Encrypted Traffic by F5Bangladesh Network Operators Group

��

Cisco umbrella youtubeDhruv Sharma

��

Security at the Speed of the NetworkHantzley Tauckoor

��

Cisco ASA FirewallsBryley Systems Inc.

��

ASA Multiple Context TrainingTariq Bader

��

Checkpoint Firewall for Dummies sushmil123

��

SANGFOR NGAF FIREWALL SG TECHNICAL PVT LTD 03002019693 Muhammad Adeel Kazim⭐⭐⭐⭐⭐

��

Cisco Network Insider: Three Ways to Secure your NetworkRobb Boyd

��

Inherent Security Design Patterns for SDN/NFV DeploymentsOPNFV

��

Putting Firepower into the Next Generation FirewallCisco Canada

��

Cisco ASA Firewall Presentation - ZABTech center HyderabadMehtabRohela

��

Testing High Performance FirewallsIxia

��

Cisco asa fire power servicesTapan Doshi

��

FireSIGHT Management Center (FMC) slidesAmy Gerrie

��

IPS Test MethodologyIxia

��

Cisco asa cx firwewallAnwesh Dixit

��

Deploying Next Generation Firewalling with ASA - CXCisco Canada

��

Pxosys Webinar Amplify your Security🏆Ruben Cocheno💭

��

Vision one-customerMarie-Agnès PONS

��

Hillstone-Corporate-Overview-EN-V3.0Shamal Abeyrathne

��

Protection and Visibitlity of Encrypted Traffic by F5Bangladesh Network Operators Group

��

Cisco umbrella youtubeDhruv Sharma

��

Security at the Speed of the NetworkHantzley Tauckoor

��

Cisco ASA FirewallsBryley Systems Inc.

��

ASA Multiple Context TrainingTariq Bader

��

Checkpoint Firewall for Dummies sushmil123

��

SANGFOR NGAF FIREWALL SG TECHNICAL PVT LTD 03002019693 Muhammad Adeel Kazim⭐⭐⭐⭐⭐

��

Cisco Network Insider: Three Ways to Secure your NetworkRobb Boyd

��

Inherent Security Design Patterns for SDN/NFV DeploymentsOPNFV

��

Putting Firepower into the Next Generation FirewallCisco Canada

��

Cisco ASA Firewall Presentation - ZABTech center HyderabadMehtabRohela

��

Similar to BreakingPoint & Juniper RSA Conference 2011 Presentation: Evaluating The Juniper SRX (20)

Ransomware-Recovery-as-a-ServiceSagi Brody

��

Evaluating Network and Security Devicesponealmickelson

��

BreakingPoint Storm CTM Cost-Effective Testing SolutionIxia

��

The document summarizes the BreakingPoint Storm CTM 4-Port 1GigE Blade, which provides a cost-effective way for organizations to test the performance and security of their networks. It can generate real-world application traffic and security attacks at line speeds on all four of its ports. While offering high throughput, it has a more affordable price point than other BreakingPoint blades. The blade can be expanded through additional license or interface blades to meet evolving testing needs.

Advances in cloud scale machine learning for cyber-defensePriyanka Aash

��

Picking an attacker’s signals out of billions of log events in near real time from petabyte scale storage is a daunting task, but Microsoft has been using security data science at cloud scale to successfully disrupt attackers. This session will present the latest frameworks, techniques and the unconventional machine-learning algorithms that Microsoft uses to protect its infrastructure and customers. (Source : RSA Conference USA 2017)

BreakingPoint от IxiaBAKOTECH

��

На сколько защищена ваша сеть? Готовы ли вы это проверить реальными атаками? Скачивайте брошюру о решении BreakingPoint от IXIA (на англ. языке) и узнайте все о тестировании уязвимостей сети и устройств безопасности! Группа компаний БАКОТЕК – официальный дистрибьютор Ixia в Украине, Республике Беларусь, Азербайджане, Грузии, Армении, Казахстане, Кыргызстане, Молдове, Таджикистане, Туркменистане и Узбекистане. При возникновении вопросов по решениям Ixia, пожалуйста, пишите на ixia@bakotech.com.

April2010 Sales Presentationtoddpruner

��

BreakingPoint FireStorm CTM DatasheetIxia

��

The BreakingPoint FireStorm CTM™ Delivers 120 Gbps of Application and Live Attack Traffic to Harden Network and Data Center Resiliency BreakingPoint’s Cyber Tomography Machines (CTMs) are the world’s only products capable of pinpointing previously impossible-to-detect weaknesses and vulnerabilities in networks, network devices, and data centers before they are exploited to wreak havoc within critical network infrastructures. Leveraging all the power and flexibility of the award-winning BreakingPoint Storm CTM, the BreakingPoint FireStorm CTM now takes performance to a new level to measure and harden the resiliency of today’s fastest and most complex network and data center infrastructures.

tcp cloud - Advanced Cloud ComputingMarketingArrowECS_CZ

��

DSS ITSEC CONFERENCE - Radware - Attack Mitigation System (AMS) - Riga, LatviaAndris Soroka

��

Radware introduces its Attack Mitigation System (AMS) as a solution that can defend against emerging cyber attack campaigns by eliminating blind spots in network and application security. The AMS provides an integrated set of protections including network behavior analysis, denial of service protection, intrusion prevention, reputation filtering, and web application firewall capabilities. These protections work together using real-time signature sharing and feedback to quickly mitigate attacks and block threats across networks and applications. Customers can benefit from improved security, reduced costs of downtime and infrastructure, and enhanced business agility.

Measure Network Performance, Security, and StabilityScott Register

��

The issues are clear. Liabilities associated with security breaches and performance issues are escalating unabated. Budgets are tight, requiring you to scrutinize every IT purchase. There is simply no margin for error, so you must know with certainty how every device, network, and data center in your infrastructure will perform in the face of current global threats and your own unique network conditions. With BreakingPoint, the answer is now clear. With the introduction of the world’s first Cyber Tomography Machine (CTM)–the BreakingPoint Storm CTM–you now have the insight you need to measure and harden the resiliency of every component of your critical infrastructure against potentially crippling attacks and peak application traffic. With BreakingPoint you can find, for the first time, the virtual stress fractures lurking within your network or data center before they are compromised by cyber attackers or high-stress application load

Measure Network Performance, Security and StabilityIxia

��

Salesforce Cloud Securitywaubin

��

This document summarizes the security features of Best of Breed Data Centers. It describes their mirrored cloud computing infrastructure across two main production data centers with a third planned location. It highlights their unmatched reliability, maximum uptime, trusted security, and world-class security certifications. Details are provided on biometric security access, CCTV monitoring, backup power and cooling systems, carrier-neutral networking with multiple transit vendors, dedicated security organization, external vulnerability assessments, and commitment to compliance.

Security and Linux SecurityRizky Ariestiyansyah

��

The document summarizes a presentation on network security and Linux security. The presentation covered introduction to security, computer security, and network security. It discussed why security is needed, who is vulnerable, common security attacks like dictionary attacks, denial of service attacks, TCP attacks, and packet sniffing. It also covered Linux security topics like securing the Linux kernel, file and filesystem permissions, password security, and network security using firewalls, IPSEC, and intrusion detection systems. The presentation concluded with a reference to an ID-CERT cybercrime report and a call for questions.

Defenders of the Galaxy - Protecting the (Cloud) galaxy from threats.pptxMatthew Levy

��

Defenders of the Galaxy - Protecting the (Cloud) galaxy from threats. In today's cybersecurity galaxy, the landscape has become increasingly sophisticated with cybercriminal activities. We need to work together in new ways to protect the cybersecurity of the planet. In this session Matthew will discuss • The threats we need to defend against • The things in our galaxy that need protecting • The Defender suite from Microsoft • The Zero Trust architecture You will learn 5 basic things you should be doing to protect yourself, and that you are not alone in this galaxy because you can leverage the Defender products from Microsoft to defend you're world.

F5 GOV Round Table - Application Centeric SecurityTzoori Tamam

��

Meetup Microservices CommandmentsBill Zajac

��

Presentation cyber defense for soa & restxKinAnx

��

The document discusses cyber defense for service-oriented architecture (SOA) and representational state transfer (REST) using the Oracle Service Bus Appliance (OSBA). It provides an overview of OSBA, including its easy deployment and configuration, DMZ-class security features, and performance benefits. Examples of OSBA use cases for security, performance, customization, and monitoring of SOA and REST applications are also presented.

Cyber defense for soa & rest oracleigsc

��

Layer 7 & Oracle: Cyber Defense for SOA & RESTCA API Management

��

BreakingPoint Resiliency Score Data SheetIxia

��

The document introduces BreakingPoint Resiliency Scores, which provide standardized metrics for evaluating the performance, security, and stability of networks and data centers. The scores are calculated by subjecting devices to real-world traffic loads and security attacks. This identifies weaknesses and determines how many users a system can support without degradation. The scores provide a way to understand how changes will impact infrastructure and to optimize resources.

Ransomware-Recovery-as-a-ServiceSagi Brody

��

Evaluating Network and Security Devicesponealmickelson

��

BreakingPoint Storm CTM Cost-Effective Testing SolutionIxia

��

Advances in cloud scale machine learning for cyber-defensePriyanka Aash

��

BreakingPoint от IxiaBAKOTECH

��

April2010 Sales Presentationtoddpruner

��

BreakingPoint FireStorm CTM DatasheetIxia

��

tcp cloud - Advanced Cloud ComputingMarketingArrowECS_CZ

��

DSS ITSEC CONFERENCE - Radware - Attack Mitigation System (AMS) - Riga, LatviaAndris Soroka

��

Measure Network Performance, Security, and StabilityScott Register

��

Measure Network Performance, Security and StabilityIxia

��

Salesforce Cloud Securitywaubin

��

Security and Linux SecurityRizky Ariestiyansyah

��

Defenders of the Galaxy - Protecting the (Cloud) galaxy from threats.pptxMatthew Levy

��

F5 GOV Round Table - Application Centeric SecurityTzoori Tamam

��

Meetup Microservices CommandmentsBill Zajac

��

Presentation cyber defense for soa & restxKinAnx

��

Cyber defense for soa & rest oracleigsc

��

Layer 7 & Oracle: Cyber Defense for SOA & RESTCA API Management

��

BreakingPoint Resiliency Score Data SheetIxia

��

More from Ixia (15)

Measuring Private Cloud ResiliencyIxia

��

This document discusses simulating live cyber attacks and application traffic to measure the resiliency of a private cloud. It describes a case study of a pharmaceutical company, Pharma Inc., that wanted to test its private cloud resiliency. The challenges of legacy testing are discussed. A 3 step approach is outlined: 1) functional testing, 2) enhancing testing with load, and 3) testing performance and security under load. The demonstration and lessons learned focus on how this approach provided Pharma Inc. insights into optimizing its private cloud deployment.

BreakingPoint 3G Testing Data SheetIxia

��

LTE Testing | 4G TestingIxia

��

Other test equipment providers sell LTE capabilities separately, but following our all-inclusive model, we’ve included LTE testing for every BreakingPoint CTM, existing or new. (All it takes is a firmware update.) The combination of such large-scale testing and our all-in-one pricing model drops the cost per UE to under $0.25. That’s right — less than 25 cents. Contrast that to the $1,000 price tag mentioned above, and it’s not hard to see the impact it makes. The fact that we can now offer our customers the most cost-effective option of simulating millions of concurrent users with real application traffic (plus security attacks and fuzzing, of course) means that they can now validate their LTE network configurations at scale before going live. This is something they simply could not have done before. For more information, please visit www.breakingpoint.com/lte

White Paper: Six-Step Competitive Device EvaluationIxia

��

Deep Packet Inspection (DPI) Test MethodologyIxia

��

Load Test Methodology: Server Load TestingIxia

��

This document outlines guidelines for measuring server load performance, security, and stability using various protocols and services. It describes 10 different load generator simulations to test web servers using HTTP, file servers using SMB, email servers using SMTP/IMAP and SMTP/POP3, and database servers using MS SQL and MySQL. The simulations involve sending requests to servers and validating the expected responses, such as status codes for web pages, successful file operations, received emails, and added/queried database records. The goal is to determine how servers perform under heavy realistic loads and identify any weaknesses.

IPv6 Test MethodologyIxia

��

The document describes a methodology for testing network devices with IPv6 and dual stack IPv4/IPv6 configurations. It involves generating different types of IPv6 traffic including generic IPv6 traffic, dual stack traffic, traffic with security attacks, and malformed packets. Metrics like latency, packet loss and throughput are measured to evaluate how the device handles each traffic type and identify any performance or stability issues. The goal is to validate that IPv6 and dual stack configurations will perform as expected under real world network conditions.

Server Load Balancer Test MethodologyIxia

��

Catalyst 6500 ASA Service ModuleIxia

��

This document discusses the Cisco Catalyst 6500 ASA Services Module, a new security blade for the Cisco Catalyst 6500 switch. It offers the best performance per blade in the industry and the fastest single chassis performance. Known as the ASASM, it provides firewall, IPS and VPN capabilities with throughput of up to 16Gbps and over 300,000 connections per second. It simplifies installation of security capabilities into the data center network and offers better price and performance than competing solutions.

Cybersecurity: Arm and Train US Warriors to Win Cyber WarIxia

��

BreakingPoint Cloud and Virtualization Data SheetIxia

��

BreakingPoint unleashes Internet-scale mayhem in a controlled environment to enable you to measure—with precision—how networks and the devices that support them will perform when faced with increasing user traffic, dynamic applications, and sophisticated attacks. BreakingPoint’s patented design unlocks the power of network processor technology to produce alwayscurrent, application-rich traffic on a scale never before seen in a small product. Using these extreme conditions, you can quickly and cost-effectively harden virtualized security, network, and application infrastructures while optimizing delivery of services for customers.

Breakingpoint Application Threat and Intelligence (ATI) ProgramIxia

��

BreakingPoint Custom Application ToolkitIxia

��

The BreakingPoint Custom Application Toolkit allows users to integrate custom application traffic onto BreakingPoint Cyber Tomography Machines to test networks. This allows users to natively generate stateful traffic from proprietary applications at speeds up to 120 Gigabits per second. The toolkit enhances the realism of testing by validating the effects of high volumes of proprietary applications on cyber infrastructure and filling gaps left by only using standard applications.

LTE Testing - Network Performance, Security, and Stability at Massive ScaleIxia

��

Harden Security Devices Against Increasingly Sophisticated EvasionsIxia

��

separate the professional hacker from the vandal. Evasion techniques are used to bypass security measures on EVERY type of device, at EVERY layer. Are you 100% confident your IPS, firewall and other security devices will stand up to these increasingly sophisticated evasions? Join BreakingPoint security researchers for this free webcast and receive a comprehensive briefing on Strike Evasions. Learn how to act with precision to detect evasions with little impact on latency. Get up-to-the-minute details on the latest evasions seen in the wild, the proper ways to test for evasion resistance, and BreakingPoint's five keys for protecting your network against cyber criminals.

Measuring Private Cloud ResiliencyIxia

��

BreakingPoint 3G Testing Data SheetIxia

��

LTE Testing | 4G TestingIxia

��

White Paper: Six-Step Competitive Device EvaluationIxia

��

Deep Packet Inspection (DPI) Test MethodologyIxia

��

Load Test Methodology: Server Load TestingIxia

��

IPv6 Test MethodologyIxia

��

Server Load Balancer Test MethodologyIxia

��

Catalyst 6500 ASA Service ModuleIxia

��

Cybersecurity: Arm and Train US Warriors to Win Cyber WarIxia

��

BreakingPoint Cloud and Virtualization Data SheetIxia

��

Breakingpoint Application Threat and Intelligence (ATI) ProgramIxia

��

BreakingPoint Custom Application ToolkitIxia

��

LTE Testing - Network Performance, Security, and Stability at Massive ScaleIxia

��

Harden Security Devices Against Increasingly Sophisticated EvasionsIxia

��

BreakingPoint & Juniper RSA Conference 2011 Presentation: Evaluating The Juniper SRX

1. Evaluating The Juniper SRX February 15th at 1:30 pm

2. IT Firestorm Threatens Business Performance

3. The Drive Towards Resiliency 3

4. 5 Keys to Evaluating The Juniper SRX: #1 Stateful Traffic Validation 4

5. 5 Keys to Evaluating The Juniper SRX: #2 Performance Under Massive Load 5

6. 5 Keys to Evaluating The Juniper SRX: #3 Performance Under Load + Attack 6

7. 5 Keys to Evaluating The Juniper SRX: #4 Performance and Accuracy of Protocol Decoding 7

8. 5 Keys to Evaluating The Juniper SRX: #5 Detection of Obfuscated Attacks 8

9. How? Attack Thyself! Real Attacks • 4,500 live security attacks • 100+ evasions • Malware • Spam • DDoS and Botnet simulation • Custom attacks • Research and frequent updates Real World Applications • 150+ application protocols • Social media, peer-to-peer, voice, video • Web and enterprise applications, gaming • Custom applications • Frequent updates Unprecedented Performance • 120 Gbps blended application traffic • 90M concurrent TCP sessions • 3M TCP sessions/second • 38 Gbps SSL bulk encryption

10. Validating The Juniper SRX Client Simulation 150+ Blended Application Traffic (ex: MySQL, Oracle, HTTP, etc.) + 4500+ Live Security Strikes + Millions of Sessions BreakingPoint Storm CTM

11. Questions and Answers 1

�ݺ�ߣ

BreakingPoint & Juniper RSA Conference 2011 Presentation: Evaluating The Juniper SRX

Recommended

More Related Content

What's hot (20)

Similar to BreakingPoint & Juniper RSA Conference 2011 Presentation: Evaluating The Juniper SRX (20)

More from Ixia (15)

BreakingPoint & Juniper RSA Conference 2011 Presentation: Evaluating The Juniper SRX