Palo Alto Networks™, the network security company, today announced that it completed rigorous IPS testing by NSS Labs with threat detection results exceeding 93% and network performance rates well above the stated datasheet IPS performance for Palo Alto Networks PA-4020.
NSS Labs—a world leader in independent security product testing and certification—used a total of 1,179 live exploits, making it the industry's most comprehensive IPS test to-date. The PA-4020 was tested against a wide variety of traffic that varied by payload size, protocol, attack target and end-user delay time to ensure a reliable, real-world test bed. Beyond detecting 93.4% of the total threat exploits within the test bed, additional Palo Alto Networks results highlights consisted of:
- Correctly handling all of the tested IPS evasion techniques, which cyber criminals use to circumvent security products
- Blocking 97% of targeted attacks aimed at end-users within the network
- Maintaining 115% of the stated datasheet IPS performance for the PA-4020
The full report including the NSS Labs testing methodology can be found at: http://jonsnetwork.com/2010/09/nss-labs-report-on-palo-alto-networks/.
"Many enterprises are faced with the realization that their network security infrastructure is lacking capabilities needed to address today's top security concerns, and are re-evaluating the effectiveness of existing products," says Rick Moy, President, NSS Labs. "Our mission is to provide these enterprises with empirical data and insight to help them make informed decisions and ultimately improve their protection against modern-day threats."
A key factor in achieving these top-rated NSS Labs test results is the innovative research organization assembled at Palo Alto Networks. The Palo Alto Networks Application and Threat Research Team is active in the research community, aggressively pursuing both new vulnerability research and mitigation of all types of threats. The team has discovered nine Microsoft vulnerabilities in the past 12 month including two of the critical vulnerabilities in the June Microsoft Security Bulletin where vulnerable systems were susceptible to an attacker taking complete control through commonly used media applications http://www.paloaltonetworks.com/news/press_releases/2010-0608-MS-security.html
"The industry and customers have already recognized us as the best-in-class application firewall, but the NSS Labs report articulated that Palo Alto Networks has indeed brought best-in-class performance in other critical traffic and threat management," said Nir Zuk, founder and CTO at Palo Alto Networks. "Test results from an organization renowned for its industry expertise in IPS testing vindicate the groundbreaking work that Palo Alto Networks Application and Threat Research team has achieved."
Information on more than 1,000 applications that are identified by Palo Alto Networks can be found in Applipedia, part of the company's Application and Threat Research Center. Visit the online resource to find the latest news, commentary, and discoveries on applications and threats at http://researchcenter.paloaltonetworks.com.
About Palo Alto Networks
Palo Alto Networks™ is the network security company. Its next-generation firewalls enable unprecedented visibility and granular policy control of applications and content – by user, not just IP address – at up to 10Gbps with no performance degradation. Based on patent-pending App-ID™ technology, Palo Alto Networks firewalls accurately identify and control applications – regardless of port, protocol, evasive tactic or SSL encryption – and scan content to stop threats and prevent data leakage. Enterprises can for the first time embrace Web 2.0 and maintain complete visibility and control, while significantly reducing total cost of ownership through device consolidation. For more information, visit www.paloaltonetworks.com.
Palo Alto Networks, "The Network Security Company," the Palo Alto Networks Logo and App-ID are trademarks of Palo Alto Networks, Inc. in the United States. All other trademarks, trade names or service marks used or mentioned herein belong to their respective owners.
