There are network-based intrusion-prevention systems that work so accurately and so reliably that network managers who decline to even consider using them out of worry IPS generates false positives or in-line equipment crashing must now re-think that position.
That's the bottom line you'll find in the 300-page report from NSS Group, the network-equipment evaluation lab that put IPS from Internet Security Systems, NetScreen Technologies, Network Associates, TippingPoint Technologies, and Top Layer through a grueling series of tests. Four out of the five vendors came through with flying colors.
NetScreen's IDP 500 failed to make the grade this time, probably due to some beta code acting up, but TippingPoint's UnityOne appliance impressed NSS Group so much it gave it a coveted "Gold" status. ISS, Network Associates, and Top Layer also earned the NSS group "approved equipment" rating by showing their IPS gear works accurately in blocking attacks and remaining reliable at high speed.
Every vendor that had the guts to submit their equipment to this level of scrutiny, knowing the results would be public, deserves a round of applause. Read our story about the NSS Group test on IPS, then let us know why you still don't want to even consider using them.
I find it hard to believe that you did not include Cisco Security Agent (formerly Okena Stormwatch) in your IPS testing.
I have tested CSA and found it to be the most comprehensive IPS tool available today! Readers should be made aware of CSA.
Posted by: Rebecca Poynter on January 26, 2004 02:44 PM
Maybe because the article talks about Network IPS and not Host IPS.
BTW It is a pity Okena got bought by cisco, I hope they do not kill another product!
Posted by: virtualphil on January 27, 2004 01:11 PM
We had Okena on our list and then the Cisco takeover happened - they simply could not sort out the required resources during such a hectic time and so had to pull out before testing - we hope to have the Cisco (ex Okena) offering in the second edition of our IPS report
Posted by: Bob Walder on January 28, 2004 07:35 AMPost a comment
|
Does Verizon's Voyager stack up to the iPhone? |
5 IT skills that won't boost your salary 
[1,407]
Women 4 times more likely than men to cough up personal info [589]
Japan's 10 funniest tech-related commercials [Videos] [407]
Throwing away a promo CD is "unauthorized distribution"? [1,265]
Adults too quick to dismiss educational video games [682]
Attack of the iPhone clones [Slideshow] [578]
10 things IT needs to know about AJAX [1,258]
This Year's 25 Geekiest 25th Anniversaries [Slideshow] [409]
Learn how to exploit your current security investment to control the information that flows into, through and out of your network.
Evaluating endpoint security products is a time-consuming and daunting task. Learn the six critical questions you need to ask prospective vendors to get the right endpoint solution.
Employees installing unauthorized applications is a growing threat to business security and productivity. Cost-effectively reduce this threat by integrating control into your malware protection.
