Friday, March 15, 2013

A Review of Juniper Networks's Mykonos Acquisition

The one year anniversary of Juniper Networks’s acquisition of Mykonos Software was last month on February 13th. We've decided to take a look back at what’s happened in the past year to see how Mykonos software has integrated into the Juniper Network product portfolio, and what advantages it has brought to the Juniper customer.

For starters, what exactly is Mykonos Software and why did Juniper Networks want it? Juniper Networks purchased Mykonos Software for their Mykonos Web Security software product. This product is a Web Intrusion Detection System that provides comprehensive web application security by detecting, tracking, profiling and preventing hackers in real-time.

Due to its functionality, the Mykonos Web Security software product has been integrated into the security portion of the Juniper Networks product portfolio. It is important to note that Mykonos is not a Network Intrusion Prevention System; it only protects web traffic and deals with HTTP and HTTPS protocols. This means that it basically acts a reverse proxy, and sits in your network DMZ between your Firewall and your Application Servers.

Mykonos is unique in its approach – it detects threats using deception. It does this by inserting detection points into web application code to create what is essentially a minefield. This detects hackers with certain malicious intent, and then Mykonos takes it a step further by capturing the hacker’s IP address and using techniques such as a persistent token and a fingerprinting technique.

Using these techniques to track and identify the hacker, Mykonos can then profile the hacker and record the incident. Once the hacker’s intent and skill level has been identified and recorded by Mykonos, the next time they attempt an attack, Mykonos will be ready with a response tailored to their unique hacker profile that can be deployed either automatically or manually in real-time.

The fact that Mykonos provides web intrusion prevention in real-time is a major advantage, but the biggest advantage that Mykonos brings to the Juniper product portfolio is the ability to proactively identify hackers before they do damage with no false positives. The claim of zero false positives is truly unique because Mykonos creates deceptive traps that only a hacker with malicious intent would be able to find because they are inserted into the code that a normal, non-threatening user would never see.

So, overall, we say bravo to Juniper Networks for making the Mykonos acquisition.  Their security offering is truly more robust with the Mykonos offering, and it provides an edge that can’t be found elsewhere in the market thanks to the combination of real-time prevention and zero false positives.

1 comment: