NGIPS:  MARKET  DRIVERS,  ARCHITECTURE,  AND  NSS  TEST  RESULTSNSS  Labs  Research  November  12,  2015

Jason  PappalexisResearch  Director

Andrew  BraunbergResearch  VP  

Thomas  SkybakmoenResearch  VP

Slide  2

NSS  Labs

The  World’s  Leading  Security  Insight  Company  

Slide  3

NSS  Labs  Experts

Andrew  BraunbergResearch  VP  

Jason   PappalexisResearch  Director

Thomas  SkybakmoenResearch  VP

Slide  4

Agenda

• The  Need  for  Independent  Testing• NGIPS  Definition• Market  and  Market  Drivers• Architectural  &  Deployment• NGIPS  Group  Test  • Methodology• Results

• NGIPS:  Why  invest  in  this  technology?• Q&A

Slide  5

Trust  me  …  I'm  a  security  vendor

Slide  6

Unmatched  Security  Testing  Expertise

Slide  7

NGIPS  DefinedKey  Next  Generation  Characteristics

Traditional  IPS  Plus:• Application  Control  • User  Identification  • Threat  Intelligence  Integration

User  Identification

Application  Control

Reputation

Slide  8

State  of  the  Market  (CY2014)

•Market  Size• US$1.40B  in  2014• US$1.46B  in  2015  (NSS  est.)

• Current  buyers• Large  Enterprise  made  up  46%  of  sales  in  2014

• Evolving  market  requirements

PLACEHOLDER  for  Pie  Chart  with  Market  Share  leaders

Slide  9

Three  Key  Market  Drivers

1. Security  effectiveness  • Increasingly  complex  threat  landscape

2. Improve  security  workflow• Integration  with  signatureless products,  SIEM,  incident  response

3. Architecture• Internal  data  center  traffic  +  Perimeter

Slide  10

• Deployment  options• Complexity• Protocol  support• Network  and  Endpoint• Adjacent  technology

Architecture  &  Deployment

Slide  11

Group  Test  Results  :  DefinitionsTCO

• Purchase• Maintenance  -­‐ incl.  subscription  fees• Administration  – incl.  installation  and  tuning

Security  Effectiveness• Equation:  (Exploit  Block  Rate)  x  (Evasions)  x  (Stability  and  Reliability)

TCO  per  Protected  Mbps• Equation:  (3-­‐Year  TCO)/(Security  Effectiveness   x  NSS  Tested  Throughput)

Slide  12

Group  Test  Results:  Protection  and  TCOMap  TCO  per  Protected  Mbps  against  Security  Effectiveness  

• Further  up  and  right  is  best  — results  can  be  surprising!

Slide  13

Group  Test  Results:  Breakdown

• Security• NGIPS  protection  ranged  from  86.6%  to  99.5%  

for  overall  security  effectiveness.

• Average  Security  Effectiveness  Rating  96.3%

• Evasion  effectiveness 100%

• Performance• Throughput  2,973  Mbps  to  24,194  Mbps

• Total  Cost  of  Ownership  (TCO)• 3-­‐year  TCO  ranged  from  $68,596  to  $489,236• Average  3-­‐year  TCO  was  $253,213

• TCO per  Protected  Mbps• TCO  per  Protected  Mbps  ranged  from  5  to  25• Average  TCO  per  Protected  Mbps  was  US$20

Slide  14

2015  NGIPS  Group  Test  Results

NGIPS  v2.0

Slide  15

NGIPS:  Worth  the  Investment  to  You?

• Architecturally  straightforward• Signature-­‐based  +  Signatureless technologies  • Designed  to  perform  at  line-­‐rate• Total  cost  of  ownership• Becoming  part  of  overall  platform:  Perimeter,  Internal,  Agent

Slide  16

In-­‐Depth  Research  

Market  Analysis

Buyers  Guide

Company  Reports

Technical  Briefs Test  Reports

Comparatives  Reports• Security  Value  Map  

• TCO  

• Security  

• Performance

Product  Test  Reports

Thank  you  for  your  interest!

www.nsslabs.com/reports