This report is available through the Data Center Intrusion Prevention System Category Subscription. All of our subscription options can be viewed here.
Authors: Thomas Skybakmoen, Keith Bormann, Ryan Turner, Matt Chips, Matt Wheeler
Publish Date: October 30, 2018
The digital world has transformed modern business. The growing use of the Internet has placed more demands than ever on the corporate data center. Organizations today rely more on their IT infrastructure to enable growth, agility, and productivity. But where there is opportunity, there is also risk. Enterprises must protect their end users and they must also protect the intellectual property and mission-critical applications that reside in their data centers.
While perimeter devices are expected to protect end users and a wide range of end user applications, data center security devices are deployed to protect servers and applications hosted in the data center. Data center intrusion prevention systems (DCIPS) are deployed at critical points in the network so their stability and reliability are imperative. The goal of a DCIPS is to identify and block sophisticated threats against web servers, application servers, and database servers without false positives or degradation of network performance.
Empirical data from individual Test Reports and Comparative Reports is used to create NSS Labs’ unique Security Value Map™ (SVM). The SVM illustrates the relative value of security investment by mapping the Security Effectiveness and the Total Cost of Ownership (TCO) per Protected Mbps (Value) of tested product configurations.
- Fortinet FortiGate 3200D v5.4.10 GA Build 7811
- Fortinet FortiGate 6300F v5.4.10 GA Build 4283
- Trend Micro TippingPoint TPS 8400TX v184.108.40.20665
To learn how vendors performed, download a copy of each Test Report. NSS clients can also download the DCIPS Comparative Reports on Performance, Security, and Total Cost of Ownership.
As with all NSS Labs group tests, there was no fee for participation. In addition, the test methodologies Data Center Network Security (DCNS) Test Methodology v2.0, and Evasions Test Methodology v1.2 that were applied is in the public domain to provide transparency and to help enterprises understand the results.