Click here to close now.

Welcome!

Search Authors: Carmen Gonzalez, Elizabeth White, Jackie Kahle, Lori MacVittie, Blue Box Blog

News Feed Item

NSS Labs Announces Analyst Coverage and New Group Test for Breach Detection Systems

NSS Labs Predicts the BDS Market to Reach $1 Billion by 2018

AUSTIN, TX -- (Marketwire) -- 11/08/12 -- NSS Labs today announced initiation of coverage and the launch of a new group test for breach detection systems (BDS). BDS is an emerging group of security solutions focused on detecting of intrusions caused by targeted persistent attacks (TPAs) and other particularly sophisticated threats designed to harvest information from compromised systems. Fueled by the frequency and severity of data breaches and their associated costs, the BDS market will have a compound annual growth rate (CAGR) greater than 25 percent, reaching $1 billion by 2018, according to NSS Labs' forecasts.

"Although you could think of this class of product as 'next-generation intrusion detection systems (NGIDS),' we at NSS Labs feel that the 'next generation' tag has been over-used by security vendors," says Bob Walder, Chief Research Officer at NSS Labs. "These products are designed to analyze complex attacks out-of-band, detecting, rather than preventing, network breaches. Because they are not expected to operate in-line at wire speeds, they can perform much more extensive analysis of inbound and outbound traffic to detect complex threats. This means they can only alert us to network breaches that have already occurred. For this reason, we coined the term 'breach detection systems (BDS).' Rather than use different vendors' lexicons based on preferred marketing descriptions, BDS precisely defines the role these solutions are meant to perform, apart from other technologies."

View the new NSS Labs Analysis Brief - Breach Detection: Don't Fall Prey to Targeted Attacks.

Will Breach Detection Systems become the latest security "silver bullet" -- or "white elephant?"
As the attack surface broadens and highly motivated cybercriminals use increasingly innovative and dynamic approaches to deploy sophisticated crimeware, enterprises must assume that they will be (or have already been) breached. Through constant analysis of suspicious code and identification of communications with malicious hosts, breach detection systems can provide enhanced detection of advanced malware, zero-day and targeted attacks, acting as an "early warning" system for exploits that have bypassed other network security defenses. Key trends driving the demand for breach detection systems include:

  • Attack frequency and sophistication at the device level: Client-side attacks represent the fastest growing and most serious group of threats today: These attacks often install malicious code "silently" and many users don't know that they've been infected until after the fact. Breach detection systems that constantly analyze suspicious code and identify communication back to malicious hosts can provide enhanced detection of advanced malware, zero-day and targeted attacks.

  • Browsers and endpoint security products struggle to block attacks: Many traditional endpoint security solutions and browsers lack adequate exploit and evasion protection: In recent NSS Labs tests, only 2 of 13 endpoint products tested blocked more than 80% of exploits and over 60% (8 of 13) failed to block attacks where obfuscation methods for compressing and packing payloads were used. In recent browser testing, only Microsoft Internet Explorer blocked 99% of malicious downloads -- Google Chrome, Apple Safari and Mozilla Firefox lagged behind blocking only 70%, 4.3% and 4.2% respectively.

  • Awareness and safe surfing are not enough: It's not necessary to visit the "dark corners" of the Internet to be at risk: Spear-phishing and drive-by exploits are served up in employee inboxes and often incorporate the legitimate web sites of trusted brand names in their attacks. Breach detection systems recognize that many responsible, well-meaning users will inevitably still be exploited and jeopardize enterprise systems.

  • Breach detection needs to take mobile devices, other shifts into account: The growth of BYOD opens otherwise secured networks up to significant risk: The increasing number of personal mobile devices and the virtualization of offices expose the corporate network to any number of malware variants from untrusted networks that may lack the protection and capabilities of the corporate infrastructure. These mobile devices also often bypass perimeter filtering and security appliances.

Commentary: NSS Labs Research Director Francisco Artes
"Breach detection systems claim to improve the recognition of the most severe types of intrusions -- such as those with the most severe consequences if electronic health records, intellectual property or other sensitive materials are stolen -- but it remains to be seen whether vendors in this emerging segment can provide value that is not offset by new products' overhead and complexity," said Francisco Artes, Research Director at NSS Labs. "Effective BDS tools need to complement existing security investments but risk being simply another console to watch; we look forward to ongoing research and testing as these solutions mature and face real-world threats."

The NSS Labs Live Testing™ harness for the BDS tests is designed to test the five main technologies that can be used as part of a BDS solution -- virtual machine (VM) sandboxes, browser emulation, domain reputation, AV signature, and traffic analysis. NSS Labs analysts will cover numerous vendors in the BDS market, including:

  • AhnLab
  • Damballa
  • FireEye
  • Lastline
  • McAfee
  • Palo Alto Networks
  • Symantec
  • Trend Micro

NSS Labs is currently in the process of confirming which vendors will be in the first Group Test for BDS and results will be available to NSS Labs' subscribers at www.nsslabs.com once complete.

NSS Labs does not receive any compensation in return for vendor participation; all testing and research is conducted free of charge.

About NSS Labs, Inc.
NSS Labs, Inc. is the world's leading information security research and advisory company. We deliver a unique mix of test-based research and expert analysis to provide our clients with the information they need to make good security decisions. CIOs, CISOs, and information security professionals from many of the largest and most demanding enterprises rely on NSS Labs' insight, every day. Founded in 1991, the company is located in Austin, Texas. For more information, visit www.nsslabs.com.

© 2012 NSS Labs, Inc. All rights reserved. All brand, product and service names are the trademarks, registered trademarks, or service marks of their respective owners.

Add to Digg Bookmark with del.icio.us Add to Newsvine

More Stories By Marketwired .

Copyright © 2009 Marketwired. All rights reserved. All the news releases provided by Marketwired are copyrighted. Any forms of copying other than an individual user's personal reference without express written permission is prohibited. Further distribution of these materials is strictly forbidden, including but not limited to, posting, emailing, faxing, archiving in a public database, redistributing via a computer network or in a printed form.

@ThingsExpo Stories
SYS-CON Events announced today that Litmus Automation will exhibit at SYS-CON's 16th International Cloud Expo®, which will take place on June 9-11, 2015, at the Javits Center in New York City, NY. Litmus Automation’s vision is to provide a solution for companies that are in a rush to embrace the disruptive Internet of Things technology and leverage it for real business challenges. Litmus Automation simplifies the complexity of connected devices applications with Loop, a secure and scalable cloud platform.
While not quite mainstream yet, WebRTC is starting to gain ground with Carriers, Enterprises and Independent Software Vendors (ISV’s) alike. WebRTC makes it easy for developers to add audio and video communications into their applications by using Web browsers as their platform. But like any market, every customer engagement has unique requirements, as well as constraints. And of course, one size does not fit all. In her session at WebRTC Summit, Dr. Natasha Tamaskar, Vice President, Head of Cloud and Mobile Strategy at GENBAND, will explore what is needed to take a real time communications ...
In 2015, 4.9 billion connected "things" will be in use. By 2020, Gartner forecasts this amount to be 25 billion, a 410 percent increase in just five years. How will businesses handle this rapid growth of data? Hadoop will continue to improve its technology to meet business demands, by enabling businesses to access/analyze data in real time, when and where they need it. Cloudera's Chief Technologist, Eli Collins, will discuss how Big Data is keeping up with today's data demands and how in the future, data and analytics will be pervasive, embedded into every workflow, application and infra...
As Marc Andreessen says software is eating the world. Everything is rapidly moving toward being software-defined – from our phones and cars through our washing machines to the datacenter. However, there are larger challenges when implementing software defined on a larger scale - when building software defined infrastructure. In his session at 16th Cloud Expo, Boyan Ivanov, CEO of StorPool, will provide some practical insights on what, how and why when implementing "software-defined" in the datacenter.
SYS-CON Events announced today that MangoApps will exhibit at SYS-CON's 16th International Cloud Expo®, which will take place on June 9-11, 2015, at the Javits Center in New York City, NY., and the 17th International Cloud Expo®, which will take place on November 3–5, 2015, at the Santa Clara Convention Center in Santa Clara, CA. MangoApps provides private all-in-one social intranets allowing workers to securely collaborate from anywhere in the world and from any device. Social, mobile, and easy to use. MangoApps has been named a "Market Leader" by Ovum Research and a "Cool Vendor" by Gartner...
SYS-CON Media announced today that @ThingsExpo Blog launched with 7,788 original stories. @ThingsExpo Blog offers top articles, news stories, and blog posts from the world's well-known experts and guarantees better exposure for its authors than any other publication. @ThingsExpo Blog can be bookmarked. The Internet of Things (IoT) is the most profound change in personal and enterprise IT since the creation of the Worldwide Web more than 20 years ago.
The world's leading Cloud event, Cloud Expo has launched Microservices Journal on the SYS-CON.com portal, featuring over 19,000 original articles, news stories, features, and blog entries. DevOps Journal is focused on this critical enterprise IT topic in the world of cloud computing. Microservices Journal offers top articles, news stories, and blog posts from the world's well-known experts and guarantees better exposure for its authors than any other publication. Follow new article posts on Twitter at @MicroservicesE
SYS-CON Events announced today that robomq.io will exhibit at SYS-CON's @ThingsExpo, which will take place on June 9-11, 2015, at the Javits Center in New York City, NY. robomq.io is an interoperable and composable platform that connects any device to any application. It helps systems integrators and the solution providers build new and innovative products and service for industries requiring monitoring or intelligence from devices and sensors.
Containers and microservices have become topics of intense interest throughout the cloud developer and enterprise IT communities. Accordingly, attendees at the upcoming 16th Cloud Expo at the Javits Center in New York June 9-11 will find fresh new content in a new track called PaaS | Containers & Microservices Containers are not being considered for the first time by the cloud community, but a current era of re-consideration has pushed them to the top of the cloud agenda. With the launch of Docker's initial release in March of 2013, interest was revved up several notches. Then late last...
Wearable technology was dominant at this year’s International Consumer Electronics Show (CES) , and MWC was no exception to this trend. New versions of favorites, such as the Samsung Gear (three new products were released: the Gear 2, the Gear 2 Neo and the Gear Fit), shared the limelight with new wearables like Pebble Time Steel (the new premium version of the company’s previously released smartwatch) and the LG Watch Urbane. The most dramatic difference at MWC was an emphasis on presenting wearables as fashion accessories and moving away from the original clunky technology associated with t...
So I guess we’ve officially entered a new era of lean and mean. I say this with the announcement of Ubuntu Snappy Core, “designed for lightweight cloud container hosts running Docker and for smart devices,” according to Canonical. “Snappy Ubuntu Core is the smallest Ubuntu available, designed for security and efficiency in devices or on the cloud.” This first version of Snappy Ubuntu Core features secure app containment and Docker 1.6 (1.5 in main release), is available on public clouds, and for ARM and x86 devices on several IoT boards. It’s a Trend! This announcement comes just as...
The only place to be June 9-11 is Cloud Expo & @ThingsExpo 2015 East at the Javits Center in New York City. Join us there as delegates from all over the world come to listen to and engage with speakers & sponsors from the leading Cloud Computing, IoT & Big Data companies. Cloud Expo & @ThingsExpo are the leading events covering the booming market of Cloud Computing, IoT & Big Data for the enterprise. Speakers from all over the world will be hand-picked for their ability to explore the economic strategies that utility/cloud computing provides. Whether public, private, or in a hybrid form, clo...
Internet of Things (IoT) will be a hybrid ecosystem of diverse devices and sensors collaborating with operational and enterprise systems to create the next big application. In their session at @ThingsExpo, Bramh Gupta, founder and CEO of robomq.io, and Fred Yatzeck, principal architect leading product development at robomq.io, will discuss how choosing the right middleware and integration strategy from the get-go will enable IoT solution developers to adapt and grow with the industry, while at the same time reduce Time to Market (TTM) by using plug and play capabilities offered by a robust I...
IoT is still a vague buzzword for many people. In his session at @ThingsExpo, Mike Kavis, Vice President & Principal Cloud Architect at Cloud Technology Partners, discussed the business value of IoT that goes far beyond the general public's perception that IoT is all about wearables and home consumer services. He also discussed how IoT is perceived by investors and how venture capitalist access this space. Other topics discussed were barriers to success, what is new, what is old, and what the future may hold. Mike Kavis is Vice President & Principal Cloud Architect at Cloud Technology Pa...
Buzzword alert: Microservices and IoT at a DevOps conference? What could possibly go wrong? Join this panel of experts as they peel away the buzz and discuss the important architectural principles behind implementing IoT solutions for the enterprise. As remote IoT devices and sensors become increasingly intelligent, they become part of our distributed cloud environment, and we must architect and code accordingly. At the very least, you’ll have no problem filling in your buzzword bingo cards.
SYS-CON Events announced today that CodeFutures, a leading supplier of database performance tools, has been named a “Sponsor” of SYS-CON's 16th International Cloud Expo®, which will take place on June 9–11, 2015, at the Javits Center in New York, NY. CodeFutures is an independent software vendor focused on providing tools that deliver database performance tools that increase productivity during database development and increase database performance and scalability during production.
SYS-CON Events announced today the IoT Bootcamp – Jumpstart Your IoT Strategy, being held June 9–10, 2015, in conjunction with 16th Cloud Expo and Internet of @ThingsExpo at the Javits Center in New York City. This is your chance to jumpstart your IoT strategy. Combined with real-world scenarios and use cases, the IoT Bootcamp is not just based on presentations but includes hands-on demos and walkthroughs. We will introduce you to a variety of Do-It-Yourself IoT platforms including Arduino, Raspberry Pi, BeagleBone, Spark and Intel Edison. You will also get an overview of cloud technologies s...
SYS-CON Events announced today that Creative Business Solutions will exhibit at SYS-CON's 16th International Cloud Expo®, which will take place on June 9-11, 2015, at the Javits Center in New York City, NY. Creative Business Solutions is the top stocking authorized HP Renew Distributor in the U.S. Based out of Long Island, NY, Creative Business Solutions offers a one-stop shop for a diverse range of products including Proliant, Blade and Industry Standard Servers, Networking, Server Options and Care Packs. As a trusted supplier, CBS guarantees quality controlled stock levels thanks to an Auto...
SOA Software has changed its name to Akana. With roots in Web Services and SOA Governance, Akana has established itself as a leader in API Management and is expanding into cloud integration as an alternative to the traditional heavyweight enterprise service bus (ESB). The company recently announced that it achieved more than 90% year-over-year growth. As Akana, the company now addresses the evolution and diversification of SOA, unifying security, management, and DevOps across SOA, APIs, microservices, and more.
The list of ‘new paradigm’ technologies that now surrounds us appears to be at an all time high. From cloud computing and Big Data analytics to Bring Your Own Device (BYOD) and the Internet of Things (IoT), today we have to deal with what the industry likes to call ‘paradigm shifts’ at every level of IT. This is disruption; of course, we understand that – change is almost always disruptive.