J-security center updates overview – Juniper Networks IDP SERIES IDP250 User Manual

For IDP Series deployments, centralized management provides the following benefits:

•

Centralized management for IDP Series appliances and other network devices

•

Consolidated logs from different devices in a single repository

•

Centralized management of enterprise security policies

•

Simplified management for attack signature updates

•

Role-based administration

For information about installing NSM and using NSM distributed management features,
management objects (such as address objects, service objects, and templates), and
navigational and display features, see the NSM documentation.

J-Security Center Updates Overview

The Juniper Networks Security Center (J-Security Center) routinely makes important
updates available to IDP security policy components, including updates to the IDP detector
engine and the NSM attack database.

The IDP detector engine is a dynamic protocol decoder that includes support for decoding
more than 60 protocols and more than 500 service contexts. You should update IDP
detector engine when you first install IDP software, whenever you upgrade, and whenever
alerted to do so by Juniper Networks. You can view release notes for detector engine
updates at

http://www.juniper.net/techpubs/software/management/idp/de/

.

The NSM attack database stores data definitions for attack objects. Attack objects are
patterns comprising stateful signatures and traffic anomalies. Security policy rules direct
the IDP engine to inspect traffic for attack objects. We recommend you schedule
automatic updates for the NSM attack database.

For more information about detector engine and attack object updates, see the IDP Series
Administration Guide.

17

Copyright © 2012, Juniper Networks, Inc.

Chapter 2: Software Overview