HP has refreshed its enterprise security offerings with an eclectic bundle of new products and services including its first next-generation firewall, a crowdsourced intelligence-sharing platform, and an even an intriguing “self-healing BIOS” for its high-end laptops.

Timed for this week’s HP Protect annual shebang in Washington, the announcement has a bit of everything for HP’s customer base, a magpie list of security goodies from endpoint to data centre that appears to be designed to fill in some longstanding holes in the firm’s line-up as well as break new ground.

Working from the equipment end, first comes the five-model family of HP TippingPoint Next-Generation Firewalls designed to upgrade enterprises to the age of the cloud, mobile computing and BYOD.

There’s nothing dramatic to report here other than that these branch, campus and data centre-level boxes now exist, with the high-end S800F/8010F featuring 5Gbps/10Gbps throughput for 10/20 million concurrent connections.

HP’s ArcSight ESM Security Information and Event Management system also gets a new add-on, Risk Insight, designed to form the event data being collected into a high-level risk assessment with “actionable intelligence.”

Perhaps the most interesting announcement is HP Threat Central, a crowdsourced service that will attempt to lure customers into sharing the threats they are experiencing in return for the ability to see the equivalents added by their peers. More likely, the pilot service will be heavily seeded with security intelligence from HP itself to start with. The beta program is currently open to HP ArcSight ESM customers with interested participants welcome to apply to join.

As with a lot of firms investing in security crowdsourcing, HP is probably not yet sure where it will go with this idea but is certain it needs to have such an initiative to stay competitive. Techworld understands that the service is being coordinated by HP’s Bristol Labs.

“Adversaries today organise around an underground marketplace for sharing resources and techniques to mount increasingly advanced attacks that cause extensive damage to organizations around the globe,” said HP’s Enterprise Security Products CTO, Jacob West.

“To combat collaborative attackers, enterprises must join together by sharing targeted intelligence confidentially and in real time to create a unified industry defense.”

On a related data-centre theme, HP is also going to offer DDoS mitigation through its new Protection Services. Based on Akamai’s provision, these are fully managed, meaning that the client isn’t faced with remote hand-holding on a topic they feel under-resourced to cope with.

Stuck on the end of all this is SureStart, a BIOS protection system designed to protect laptops from low-level threats that manage to load before the operating system. Using HP’s BIOSphere firmware management system and an embedded controller, SureStart will be available on HP EliteBooks this Autumn.

The technology can be used both to protect the BIOS from interference as well as reinstating it in the vent of corruption, HP said. Further technical details of the system will be announced later this week.