On April 12, 2006, Juniper Networks announced a new solution that helps multi-system operators (MSOs) protect SIP and VoIP services from cyberattacks. This new solution enhances the security capabilities of existing services while minimizing costs associated with network failures and service outages.
Compatible with any PacketCable Multimedia (CMTS) compliant cable modem gateway system, the Cable Threat Mitigation solution consists of a combination of routing devices, Intrusion Detection and Prevention (IDP) devices, and the SDX Service Deployment System. This allows MSOs to quickly and effectively identify and isolate security threats, while sending infection alerts to customers and operational staff. By utilizing a CMTS-based architecture, Juniper’s new Cable Threat Mitigation solution helps MSOs secure VoIP services across their entire network, from the IP core to the end-users.
The Cable Threat Mitigation solution employs a Juniper Networks IDP device that monitors cyberattacks at each user, application, or based on demand, while utilizing Juniper Network’s SDX 300 product. Malicious traffic such as malware or distributed denial-of-service (DDoS) attacks will be detected by the IDP, which then alerts the SDX-300. The SDX will subsequently issue an appropriate policy to any Juniper Networks router and/or PacketCable Multimedia compliant cable modem gateway or third-party router, enabling MSOs to implement a range of options to mitigate threats.
Depending on the nature of the threats, MSOs can choose to limit or filter traffic, drop calls, or reconnect users to a web portal, automatically restarting services once threats are eliminated.
In addition to securing VoIP services, the new solution can also be extended to provide security for SIP-based services, such as online gaming, video conferencing, instant messaging (IM), and push-to-talk services. SIP is often a target of denial-of-service (DoS) attacks, spoofing, and various other attacks.
