Juniper Networks added risk-based access control capabilities and a VPN application to its Connected Security portfolio.

The three new additions — Adaptive Threat Profiling feature for Juniper Advanced Threat Prevention (ATP) Cloud, WootCloud HyperContext integration for device profiling, and Juniper Secure Connect VPN application — improve network visibility and extend security policy and access control to any device, which in the COVID-19 era will likely be outside of the branch office.

“This is really focused on knowing who and what is on the network,” said Kate Adam, senior director of security product marketing at Juniper Networks. “We brought together our security portfolio with our networking portfolio to provide the answer to that question.”

One piece of the update lets organizations use ATP Cloud’s Adaptive Threat Profiling to automatically create security intelligence threat feeds based on who and what is currently attacking the network and who the attack is targeting. This enables automated protection across network infrastructure.

Adaptive Threat Profiling uses Juniper Security Services to classify traffic based on the endpoint operating system, and it builds custom threat intelligence feeds that can then be used for further inspection or blocking at multiple enforcement points.

Additionally, Juniper Networks SRX Series firewalls act as sensors throughout the network on tap ports, identifying threats and sharing intelligence to in-line devices automating real-time enforcement.

“You can set a policy on the SRX to target traffic for inspection from a specific OS,” Adam said. “So it allows us to segment traffic much better and inspect where we need it to identify and mitigate that risk across the network.”

The second piece integrates WootCloud HyperContext with SRX Series firewalls, ATP Cloud, and Juniper Mist Cloud.

WootCloud is a smart device security platform that uncovers unmanaged devices on both the radio and network spectrum, and it analyzes more than 300 device parameters to generate device risk scores.

By integrating with WootCloud, Juniper can provide device profiling, threat detection, and automated microsegmentation and access control across all devices on a customer’s network. For example, it can automatically detect compromised IoT devices on the network and place them in separate VLANs to prevent the attack from spreading. It can also enforce secondary authentication or systematically limit access for devices as their risk to the network increases.

And finally, the third piece is a VPN application called Juniper Secure Connect that provides remote access and supports both IPSec and SSL-VPN. It uses built-in automation for security policies and to ensure performance.

“As most of the workforce is distributed, this brings that consistent security policy, that visibility to devices, wherever they are, you know, even if they’re not in the office,” Adam said.

Additionally, Juniper Secure Connect, along with Juniper SD-WAN and WAN Assurance driven by Mist AI, allows organizations to scale to adapt to changes in the network perimeter and attack surface.