Juniper Networks has received a “AAA” rating in the first-ever Cloud Network Firewall evaluation by CyberRatings.org, a nonprofit member organization that provides transparency and expert guidance on cybersecurity risks via research and objective product testing.
This is the latest in a series of third-party tests, analyst reports and customer wins that validate Juniper’s Connected Security portfolio, which sets the bar for security effectiveness, performance, scale and cost savings across a wide array of use cases – from Zero Trust data centers and workload protection – to secure SD-WAN and SASE transformation.
CyberRatings tested Juniper Networks vSRX Virtual Firewall deployed within an AWS environment, a deployment scenario that has become a popular use case with public cloud usage expected to grow 20.4% in 2022, according to Gartner (Forecast: Public Cloud Services, Worldwide, 2020-2026, 1Q22 Update). Juniper vSRX achieved top scores across all five tested categories:
- AAA in Threat Prevention: 100% exploit block rate with 0 false positives
- AAA in Performance: 974 Mbps overall rated performance
- AAA in Management & Reporting Capabilities
- AAA in TLS/SSL Functionality: Supporting 100% of the tested cipher suites and encryption use cases
- AAA in Routing & Policy Enforcement
Perfect Security Effectiveness & Low TCO
The CyberRatings results noted that Juniper vSRX achieved the highest rating of “AAA” for Threat Protection with Juniper blocking 100% of tested exploits and evasions without a single false positive, citing that “Threat Protection was excellent.” Additionally, Juniper’s overall rated performance was 974 Mbps, just shy of achieving the AWS test environment’s maximum throughput of 1,000 Mbps. While the AWS test environment limited throughput to 1Gbps, the 17-core vSRX can handle nearly 40 Gbps with the same level of excellent threat protection as tested by CyberRatings.
Given the sharp rise in application vulnerabilities and targeted exploits, a firewall that does not handle SSL/TLS well leaves traffic vulnerable to session intercepts, such as person-in-the-middle attacks. Juniper vSRX received a “AAA” rating for SSL/TLS functionality, with CyberRatings noting that all nine tested cipher suites were supported. Juniper vSRX also passed all additional encryption tests, including decryption validation and preventing insecure ciphers, which included null and anonymous — or unsigned — ciphers.
Top-notch security and performance typically come with an expensive price tag. However, the vSRX is competitively priced, with a 1-year TCO-per-protected-Mbps of $56.66. In their report, CyberRatings mentions that cost of labor and OPEX was not included in this calculation, but should be factored in by organizations, pointing directly to management and how cloud network firewalls enhance or detract from the experience of those operating them.
Management & User Experience
CyberRatings used Security Director, Juniper’s unified management portal, to deploy and configure the vSRX. Launched in May 2021, Security Director Cloud provides organizations with cloud-based unified management and offers a seamless way for organizations to extend their Zero Trust policies across new architectures through a single policy framework. CyberRatings gave Juniper an “AAA” rating for Security Director’s management and reporting capabilities, noting that logging was robust and UI navigation was straightforward.
“Juniper is an undisputed leader in Cloud Network Firewall, and we are incredibly proud of this achievement. Our vSRX not only scored a ‘AAA’ rating, but also received the highest possible results in every category in the CyberRatings test,” said Samantha Madrid, Group VP of Security Business & Strategy at Juniper Networks. “Customers are telling us that in light of on-going geo-political difficulties and economic constraints, 100% security effectiveness coupled with performance that lowers OpEx costs is more important than ever.”
The Juniper vSRX Virtual Firewall offers full next-generation firewall capabilities, including application security, industry-leading IPS, advanced threat prevention and secure connectivity for remote users. It is natively integrated with Juniper Cloud Workload Protection to leverage intelligence from real-time attack prevention, for threats like Log4j, and detect and stop future attacks further upstream in the security stack, extending Juniper’s Connected Security strategy to the cloud.
“The cloud is where organizations continue to invest, and with that continued shift, securing those environments becomes crucial,” said Vikram Phatak, CEO of CyberRatings.org. “We’re thrilled that we can provide the market with reliable testing and objective results, so organizations are equipped with the best possible data to help them make sound security decisions.”
Juniper’s “AAA” 2022 CyberRatings Cloud Network Firewall test results are the latest over the past three years that tout the SRX’s top security effectiveness, continuing Juniper’s trend for recognition in security over the past three years, including:
- 100% effectiveness against malware for the past eight quarters in a row from ICSA Labs Advanced Threat Defense
- 8% security effectiveness in NetSecOPEN’s 2022 Network Firewall certification
- 5% security effectiveness in CyberRatings 2021 Enterprise Firewall test