 |
|
|
Group Test�(Edition 4) Foreword Following the huge success of the first comprehensive Intrusion Prevention System (IPS) test of its kind, The NSS Group is pleased to present the results of the fourth round of IPS testing using a brand new and much more advanced and rigorous methodology.� As with the first three rounds of testing, this exhaustive review will give readers a complete perspective of the capabilities, maturity and suitability for immediate deployment of each of the products tested. The NSS Group established this test as IPS products are being actively deployed as a new layer in defence-in-depth security architectures. � The NSS IPS test evaluates the performance, reliability, security effectiveness, and usability of Network IPS products. The test consists of seven sections within three primary areas: performance and reliability, security accuracy, and usability. � All three areas have been enhanced and extended in the new methodology, and the usability section of the report now follows the equivalent section of the methodology very closely, making it much easier to make direct comparisons between reports for different products.� Overall, the brand new test suite contains over 1500 individual tests, providing the most thorough and complete evaluation of IPS products available anywhere today. The NSS Group has developed advanced testing methodologies for both Rate-Based IPS and Content-Based IPS products, since these devices are often very different in operation.� For the first time, NSS has introduced multiple levels of NSS Approved awards to help users differentiate more accurately between products for different deployment scenarios - the standard IPS award is equivalent to the previous NSS Approved (although the more rigorous new test suite makes it harder to obtain), and above that we have introduced additional levels for Branch Office, Enterprise and MSP/ISP devices.� It is worth pointing out that not every product submitted for testing receives an NSS Approved award. Standards are very high, and to date only one product has received one of the new NSS Approved awards. � The NSS Group IPS test methodologies have become the de facto standard for testing in-line Intrusion Prevention/Attack Mitigation devices, and the NSS Approved logo is now an essential item on the list of requirements when purchasing these products. � The latest IPS testing information can be viewed on-line at www.nss.co.uk/ips� Bob Walder Table of Contents
Introduction
Internet Security Systems Proventia Network
Intrusion Prevention System GX4004 (Firmware v1.3)
IPS Testing
Methodology
Appendix A - The Test
Equipment |
Click here to purchase electronic (PDF) and hard copy versions of this report |
Send mail to webmaster
with questions or�
|