Track topics on Twitter Track topics that are important to you
Security efficacy for leading NGFW products impacted by evolving threat landscape
7 Products Receive Recommended Rating – 4 Receive Caution Rating
AUSTIN, Texas, June 06, 2017 (GLOBE NEWSWIRE) -- NSS Labs, Inc., the global leader in operationalizing cybersecurity, today announced the results of its Next Generation Firewall (NGFW) Group Test. Eleven products from 10 market-leading vendors were tested in the key areas of security effectiveness and total cost of ownership (TCO). Of the NGFW vendors whose products had results published today, seven products received a Recommended rating, while four products received a Caution rating.
NGFWs are a critical component of a defense-in-depth strategy. The attack surface in enterprise environments is constantly expanding. This is for a number of reasons, including the proliferation of enterprise applications; mainstream adoption of bring your own device (BYOD) policies; hybrid cloud environments; operational requirements—such as IT and security policy enforcements; and the constant need to patch operating systems and devices. Enterprises are investing in NGFW perimeter defenses that address these requirements and reduce the attack vectors that cybercriminals can use to compromise their environments.
For this seventh iteration of the NSS Labs NGFW Group Test, the Test Methodology incorporated additional use cases to support current real-world requirements for security efficacy and encryption. In particular, evasion techniques were expanded beyond active, in-the-wild threats to include new, weaponized attacks. Evasions are a growing concern as many exploits are capable of bypassing security measures using simple techniques that can be applied to HTTP traffic. More than 80% of the NGFW products tested missed evasions, and three moved from Recommended to Caution ratings. Many of these vendors have worked with NSS Labs to update their products so that they are able to detect these evasions in the future.
Key findings from the test:
“The NGFW market is one of the largest and most mature security markets,” said Jason Brvenik, Chief Technology Officer at NSS Labs. “Threats are constantly evolving and in this year’s test, only two tested products were resistant to all tested evasions. Although the product scores were impacted, several vendors quickly patched their products after the test to improve security—a testament to their ability to respond to the evolving threat landscape. The findings of this year’s NGFW Group Test underscore the importance of employing layered defenses to keep pace with changes in the threat landscape.”
The following products were tested:
NSS Labs is committed to providing empirical data and objective group test results that enable security organizations to make educated decisions about purchasing and optimizing security infrastructure products and services. As with all NSS Labs group tests, there is no fee for participation, and the test methodology will be in the public domain to provide transparency and to help enterprises understand the factors behind test results. Click here for more information about our group test policies.
Click here for more information on this test, and the test methodology used, or to purchase the individual Test Reports. Click here to download the Security Value MapTM, which provides a graphic comparison of Security Effectiveness and TCO across the tested products.
About NSS Labs, Inc.
NSS Labs, Inc. is the global leader in operationalizing cybersecurity. Through continuous security validation and global threat discovery and automation, NSS Labs empowers enterprises to reduce the operational burden of cybersecurity and address crucial gaps in their cybersecurity efforts. Informed by our experience and strong foundation of security product validation, NSS Labs offers CAWS, a cyber threat protection platform that provides businesses with visibility into the cyber kill chain and automated insights into active threats. With global visibility into active threats and vulnerabilities, CAWS delivers a unique cyber risk rating that makes cybersecurity measurable and helps enterprises focus their resources in the areas that make the most difference. Combined, this information enables businesses to continuously monitor and respond to threats, strengthen their cybersecurity posture, and have confidence that they are appropriately securing the enterprise. CISOs, security operations teams, threat researchers, and information security professionals from many of the world's largest and most demanding enterprises rely on trusted insights from NSS Labs. For more information, visit www.nsslabs.com.
Contact: Tom Resau W2 Communications Phone: +1 703-877-8103 firstname.lastname@example.orgNEXT ARTICLE