Next Generation Intrusion Prevention System
NGIPS 2018 Comparative Report: Total Cost of Ownership

NGIPS 2018 Comparative Report: Total Cost of Ownership

This report is available through the Next Generation Intrusion Prevention System (NGIPS) Category Subscription. All of our subscription options can be viewed here.

AUTHOR: Thomas Skybakmoen

TECHNOLOGY DESCRIPTION: Next generation intrusion prevention systems (NGIPS) must provide organizations with the ability to identify both the applications and the users on their internal networks. As with their predecessors, NGIPS must protect the enterprise user against threats. Designed to identify and block attacks against internal computing assets, a good NGIPS can provide temporary protection and relief from the immediate need to patch affected systems. The NGIPS must catch sophisticated attacks while producing as few false positives as possible.

REPORT FOCUS: The implementation of next generation intrusion prevention system (NGIPS) products can be a complex process, with multiple factors affecting the overall cost of deployment, maintenance, and upkeep. This report focuses on Total Cost of Ownership (TCO) per Protected Mbps. NSS’ cost analysis includes a three-year TCO that is based on:

  • Acquisition costs for the NGIPS and a central management system (CMS)
  • Fees paid to the vendor for annual maintenance, support, and signature updates
  • Labor costs for installation, maintenance, and upkeep

PRODUCTS EVALUATED:

  • Forcepoint Forcepoint NGFW v6.3.6
  • Fortinet FortiGate 500E v5.6.4GA build 7892
  • Fortinet FortiGate 3000D v5.6.4GA build 7892
  • IBM QRadar XGS5200 v5.4.0.4
  • Juniper Networks SRX4200 v15.1X49-D140.2
  • Palo Alto Networks PA-5220 PAN-OS 8.1.2
  • Trend Micro TippingPoint 8400TX v5.1.0.4965


To learn how vendors performed, download a copy of each Test Report. NSS clients can also download the NGIPS Comparative Reports on Performance, Security, and SVM.

As with all NSS Labs group tests, there was no fee for participation. In addition, the test methodology applied is in the public domain to provide transparency and to help enterprises understand the results.

As with all NSS Labs group tests, there was no fee for participation. All testing was conducted independently and was not paid for by any vendor.