ICSA Labs Launches Quarterly Testing Program for Network Intrusion Prevention Systems

To help organizations better protect their networks from malicious software and other attacks, ICSA Labs is launching a quarterly testing program for network intrusion prevention systems.

The new program is designed to evaluate the effectiveness of intrusion prevention systems (IPS) in protecting against the most recently discovered network vulnerabilities.  The quarterly testing, which is available to all IPS manufacturers, is also an enhancement to ICSA Labs' certification program, which conducts similar rigorous testing once a year on intrusion protection systems.

"ICSA Labs' network IPS quarterly testing will evaluate how well these products detect and stop attacks - in the short and long run," said Brian Monkman, technology programs manager, ICSA Labs. "The goal is to determine the effectiveness of these products against both emerging and existing security threats to enterprise networks."

Each quarter, ICSA Labs, an independent division of Verizon, will test network IPS products against the most relevant and severe security vulnerabilities.  A report containing the results of each quarterly test, including individual vendor scores, will be posted on ICSA Labs' Quarterly Network IPS Vulnerability Testing page

In the first test, five products were evaluated, including Sourcefire 3D4500, Stonesoft StoneGate IPS-1205, HP TippingPoint S660N and HP TippingPoint S330

Each product was tested against several vulnerabilities that were less than three months old.  After the initial test, the companies were able to review the results and improve their products. A second test was then conducted. 

The results from the second test showed strong overall improvement over the first test's results, with an effectiveness rating ranging from 81.3 percent to 90.6 percent and an average score of 86.2 percent. The effectiveness rating in the first test ranged from 59.4 percent to 78.1 percent, and the average score was 69.4 percent.

Quarterly Testing to Enable Vendors to Update and Improve Vulnerability Coverage

For subsequent quarterly tests, two sets of vulnerabilities will be used.  The first set will feature vulnerabilities that are less than three months old.  The second will feature the vulnerabilities that were tested in the previous quarter.  This will enable vendors to update and improve their vulnerability coverage against new and existing threats.

Companies can submit their network IPS products for quarterly testing regardless of whether the products have been certified by ICSA Labs. A full list of certified network IPS products is available here.

About ICSA Labs
ICSA Labs, an independent division of Verizon, offers third-party testing and certification of security products and network-connected devices, such as printers and faxes, to measure product compliance, reliability and performance to many of the world's top security vendors. Visit http://www.icsalabs.com and http://www.icsalabs.com/blogs for more information

About Verizon
Verizon Communications Inc. (NYSE, NASDAQ:VZ), headquartered in New York, is a global leader in delivering broadband and other wireless and wireline communications services to consumer, business, government and wholesale customers.  Verizon Wireless operates America's most reliable wireless network, with more than 106 million total connections nationwide.  Verizon also provides converged communications, information and entertainment services over America's most advanced fiber-optic network, and delivers integrated business solutions to customers in more than 150 countries, including all of the Fortune 500.  A Dow 30 company, Verizon employs a diverse workforce of nearly 196,000 and last year generated consolidated revenues of $106.6 billion.  For more information, visit www.verizon.com.