Select Page

Advanced Endpoint Protection (AEP)

Advanced Endpoint Protection (AEP)

TECHNOLOGY DESCRIPTION

An AEP product is one that provides automatic threat prevention and threat event reporting capabilities for every endpoint system it protects. These products are the current evolution of endpoint security technology, combining endpoint protection products (EPP) with endpoint detection and response (EDR) technology in order to provide detection, blocking, and forensic insight.

With the large number of products in the space, it is challenging for enterprises to understand true differentiation. To address cyber risks in mature products and considerations most critical to consumers, a new ratings system has been introduced for the 2020 Advanced Endpoint Protection (AEP) Test. Product ratings range from ‘AAA’ – ‘D.’

TECHNOLOGY DESCRIPTION

An AEP product is one that provides automatic threat prevention and threat event reporting capabilities for every endpoint system it protects. These products are the current evolution of endpoint security technology, combining endpoint protection products (EPP) with endpoint detection and response (EDR) technology in order to provide detection, blocking, and forensic insight.

With the large number of vendors marketing products with visibility, as well as advanced detection and blocking functionality, it is challenging for enterprises to understand true differentiation. The AEP Group Test provides Test Reports and Comparative Reports that enable enterprises to make informed decisions to evolve and rationalize their cyber risk programs.

WHAT WE TESTED

The new rating system considers the following capabilities: Management, False Positive Rate, Resistance to Evasion, Total Cost of Ownership (TCO), and Block Rate, which includes Email Malware, HTTP Malware, Drive-by Exploits, Social Exploits, and Handcrafted (targeted) Attacks. NSS Labs used multiple commercial, open-source, and proprietary tools to employ attack methods currently being used by cybercriminals and other threat actors.

Products were tested against socially engineered malware, exploits, blended threats, unknown threats, evasions, offline capabilities and resistance to tampering. Testing spanned four months and included over 56,000 test cases across multiple categories.

While AEP products vary with regards to efficacy, the block rate of products tested is showing improvement. The block rate of tested products ranged between 88.4% and 99.1%. 10 of the 12 assessed products were resistant to tested evasions, while only one of the assessed products failed to block or detect at least one evasion.

Report ratings range from AAA – D.

A product rated ‘AAA’ has the highest rating assigned by NSS Labs. The product’s capacity to meet its commitments to consumers is extremely strong. A product rated ‘D’ is actively being breached by known threats and is unable to protect consumers.