Table of Contents
Advertisement
CHAPTER 6
Glossary of Terms
Alternate Exhaust
An eth2 interface configured (optionally) to contain analysis engine CnC traffic off the
Interface
management network (eth0).
Anti-SIEM
A Juniper ATP Appliance Advanced Threat Analytics (ATA) feature that allows for
more detailed endpoint and log ingestion handling, management and reporting;
includes Active Directory, Splunk and Direct Log Ingestion options.
AWS
Amazon Web Services and EC2 management console from which Juniper ATP
Appliance administrators can configure vCore AMI images.
Blacklist
A list or register of entities to be denied a specified access or privilege. During
detection engine analysis, when content matches any pattern on the blacklist, the
content is deemed malicious and therefore an alert or block action is enacted
immediately.
Collector
Juniper ATP Appliance's Traffic inspection and object collection mechanism
CnC server
Command and control server that directs the operation of a botnet.
CLI
Command-line interface. The Juniper ATP Appliance has a CLI interface for
administering the appliance.
CM
The Juniper ATP Appliance Central Manager component that has a web-based
graphical user interface.
Darkspace
Currently unused address space.
DHCP
Dynamic Host Configuration Protocol.
DMZ
Demilitarized zone. An area of the network where systems have direct access to the
Internet or an external network.
DNS
Domain Name Service.
Event
Indicates a type of security intrusion or attack.
Greylist
Greylists provide control over the priority of workorders for known IP addresses and
URLs. Greylists contain files that contain either URLs or IP addresses and are used by
the Juniper ATP Appliance analysis engines to check if the specified URLs or IP
addresses contain a malicious rule match.
Copyright© 2018, Juniper Networks, Inc.
111
Advertisement
Table of Contents
