The Latest FireEye News
Product and Solution Information, Press Releases, Announcements
|FireEye Announces General Availability of Network Threat Prevention Platform with IPS|
|Posted: Thu May 29, 2014 02:25:52 PM|
New Release Brings Purpose-Built Virtual-Machine Technology to Intrusion Prevention System Market, Combining Advanced Attack Defense With Compliance.
Milpitas, CA - May 29, 2014 - FireEye, Inc. (NASDAQ: FEYE), the leader in stopping today's advanced cyber attacks, today announced that it will offer the FireEye Network Threat Prevention Platform with IPS to customers worldwide starting June 2, 2014. Available as an add-on license to the FireEye Network Threat Prevention Platform (NX series), the new offering is designed to give customers a holistic view of multi-vector attacks that go well beyond conventional intrusion prevention system (IPS) tools. The Network Threat Prevention Platform with IPS uses purpose-built virtual-machine technology to better protect systems against known and unknown threats and rein in false positives compared to traditional IPS solutions.
"Today, security teams need to control costs while scaling against a more sophisticated foe,” said Jon Oltsik, senior principal analyst with Enterprise Strategy Group. “By consolidating IPS with its virtual-machine technology, FireEye wraps security, compliance, and convenience into one box."
According to IDC’s Worldwide Network Security Forecast 2013–2017 and 2012 Vendor Shares, IPS represents a nearly a $2 billion market. Signature-based IPS technology is noisy, outdated, and unable to detect advanced attacks. In addition, security teams often purchase IPS to fulfill compliance mandates. The FireEye Network Threat Prevention Platform with IPS is powered by the FireEye Multi-vector Virtual Execution™ (MVX) engine, combining the proven architecture of MVX to detect today’s advanced threats with IPS technology to meet compliance obligations.
“We have chosen the FireEye Network Threat Prevention Platform with IPS because it is a solution that allows us to combine advanced threat protection with compliance-driven security needs. We will be able to provide our security team greater visibility into network threats and more effective data to act on by significantly reducing false positives and negatives, allowing us to focus on detecting and confronting today’s real threats,” said Marco Francardi, technical manager of security, Italian Ministry of Foreign Affairs.
When network traffic triggers a signature-based alert, the MVX evaluates the traffic to confirm whether the threat is real, greatly improving the signal-to-noise ratio. In addition to passing an alert directly to the alert management system, as traditional IPS does, the MVX engine inspects the corresponding network traffic within instrumented virtual-machine environments. The MVX engine evaluates activity across multiple flows used in advanced attacks. That analysis is integrated with host-based detection and other components of the broader FireEye platform.
“Traditional signature-based security technologies tend to be reactive and are therefore unable to identify today’s threats that are targeted and constantly evolving,” said Manish Gupta, FireEye senior vice president of products. “The architectural limitations of these technologies lead to many false positives and false negatives. Since multiple compliance standards require the presence of IPS, we can now provide security teams with compliance and security in one solution.”
The FireEye Network Threat Prevention Platform with IPS consolidates advanced threat prevention with traditional security to optimize spend, reduce false positives, and enable compliance, while guarding systems from known and unknown threats. Key features of the new offering include:
Pricing for the new IPS offering starts at 15 percent of the NX sensor.