Which data center intrusion prevention systems are worth the investment? NSS Labs tests 5 DCIPS products

Performance is critical when evaluating data center intrusion-prevention systems (DCIPS), which face significantly higher traffic volumes than traditional IPSes.

A typical IPS is deployed at the corporate network perimeter to protect end-user activity, while a DCIPS sits inline, inside the data center perimeter, to protect data-center servers and the applications that run on them. That requires a DCIPS to keep pace with traffic from potentially hundreds of thousands of users who are accessing large applications in a server farm, says NSS Labs, which recently tested five DCIPS products in the areas of security, performance and total cost of ownership.

“Application traffic generates many connections and transactions per request, which places a high demand on a network-security device’s ability to set up many connections quickly, hold many connections open and achieve high throughput rates,” says NSS Labs, which specializes in cybersecurity testing and purchasing guidance for security infrastructure products and services.

NSS researchers tested five products to see how well they can identify and block threats against web servers, application servers and database servers without false positives or degradation of network performance. The five tested products are:

Leave a Reply

Your email address will not be published. Required fields are marked *