Juniper Monday is offering a package that will let customers boil down network logs and turn them into alerts about security incidents, making it much easier to figure out when a network is under attack and what is being affected.
Security Threat Response Manager (STRM) is an appliance that draws data from network gear, security equipment, applications and identity-awareness platforms to draw a real-time security view of the network, Juniper says.
STRM includes network behavioral-anomaly detection capabilities that compare data flows to historic data to flag potentially malicious new behavior that may not be detected with signature-based security software, Juniper says.
The device prioritizes offenses based on preset or custom policies so administrators are informed about the most pressing incidents first.
The device includes templates for reporting security data that are instrumental in demonstrating compliance with regulations including HIPAA, SOX and PCI.
The device comes in three models, STRM500, starting at US$15,000, and STRM2500, starting at US$37,000, and STRM5000. STRM500 handles 500 events per second, STRM2500 handles 2,500 events per second, and STRM5000 can handle more than 5,000 events per second. The first two are available now, and the third will be available in the second half of 2008.