Study of next-generation firewall deployments

The results of a Ponemon Institute survey show 55 percent of users globally, and 64 percent in the U.S., are leveraging next-generation firewalls to augment their current security deployments, rather than replacing legacy technology.

The survey also highlights the need for NGFWs to prioritize quality of IPS so that customers can work to achieve comprehensive security without significantly affecting performance.

Key findings from the survey:

  • Respondents ranked IPS as the most important component of the NGFW for data protection
  • Respondents ranked firewall as the least important feature for protecting their data from unauthorized access
  • More than 62 percent of current NGFW users surveyed suffer performance degradation when first-generation Intrusion Prevention System (IPS) is deployed as part of the NGFW device, according to the global average
  • 39% of NGFW users are implementing application control in monitoring and reporting mode
  • 25% of these users say application control is deployed only in simple allow/block mode
  • 40% of respondents do not granularly configure application control due to performance concerns.

“The dramatic increase in sophisticated and targeted attacks, as well as specific compliance demands, are putting even more pressure on organizations to ensure that their data remains secure,” said Dr. Larry Ponemon, Chairman and Founder of the Ponemon Institute. “Today’s results indicate the challenges facing current Next-Generation Firewall implementations and the key areas, including evolved IPS and supplemental strategies, where users require increased vendor investment.”

This survey looked at current NGFW implementations in five countries. Ponemon surveyed information security managers, network administrators, CIOs and CISOs at enterprises sized up to 75,000 employees.

The respondents represented 15 different industries including financial services, retail, health and pharmaceutical, government, hospitality, education, transportation, and defense and energy.