Check Point’s Power-1 receives 100 per cent effectiveness in firewall, application control and identity awareness tests
CALGARY, AB – APRIL 5, 2011Check Point® Software Technologies Ltd. (Nasdaq: CHKP), the worldwide leader in securing the Internet, today announced Check Point has completed testing by NSS Labs, achieving 100 per cent in firewall, identity awareness and application control enforcement tests – and earning the industry’s first NSS Labs “Recommend” rating for Next Generation Firewalls (NGFW).
“Firewalls have been the cornerstone of network security but are now being called to fulfill additional roles in light of emerging Web 2.0 trends and other business drivers,” said Rick Moy, president at NSS Labs. “In our tests, we took the same approach that today’s cybercriminals would in attempting to breach the firewall. The NSS Labs Next Generation Firewall Test is the only one of its kind and provides enterprises with a rigorous and truly independent analysis.”
NSS Labs, a leader in independent security product testing and research, is known to conduct the most comprehensive third-party testing in the industry, providing real-world research and analysis to enterprises, government agencies and organizations of all sizes. NSS Labs tested the Check Point Power-1 11065 against their Next Generation Firewall Test Methodology and is comprised of 1,179 live exploits and across a wide variety of traffic, payload sizes and protocols. According to the report, “Check Point’s management interface was well designed and intuitive. For multi-gigabit environments looking to upgrade defense from their current firewalls to a next generation firewall, the Check Point Power-1 11065 provides excellent protection and an outstanding three-year total cost of ownership (TCO).”
Key findings from the report highlight Check Point’s exceptional next generational firewall security capabilities, including:

  • Passed 100 per cent of Traditional Firewall Tests – passed comprehensive firewall security and policy enforcement requirements. In addition, Check Point Power-1 11065 also achieved a 97.3 percent tuned block rate for integrated IPS1 and 86.6 per cent out-of-the-box protection in a recent NSS Labs IPS Group test.
  • Passed 100 per cent of Application Identification and Control Tests – correctly identified a range of applications and enforced policies across a variety of applications, such as SSH, social networking, Instant Messaging, Skype and other Web 2.0 widgets.
  • Passed 100 per cent of User and Group Identity Awareness Tests – successfully identified users and enforced all firewall policies with direct integration to Active Directory.
  • Passed 100 per cent of Tested Evasions – successfully identified and blocked attacks using evasion and obfuscation techniques.
  • Low TCO – Delivering impressive price for performance to customers at $49 per Mbps-protected.

“Internet use in the office has changed dramatically with the wide adoption of social networking and Web 2.0 applications. To achieve the level of protection needed in modern day business environments, IT administrators must go beyond simply blocking specific ports or protocols, and instead, apply granular application control to enable better visibility and protection –without inhibiting the flow of business,” said Oded Gonda, vice president of network security solutions at Check Point Software Technologies. “The NSS Labs results validate our leadership in Next Generation Firewall and our ability to consistently deliver innovative, high-performing and trusted network security solutions to the market.”
Check Point’s latest software Release R75 based on the Software Blade Architecture™, enables organizations to benefit from easy access to Application Control, Identity Awareness and Intrusion Prevention capabilities at multi-gigabit speeds, in a single solution. The NSS results demonstrate Check Point’s ability to provide customers with a combination of robust security technology, user awareness and broad application control—each necessary for organizations to utilize Web 2.0 tools without jeopardizing the security of the business. In addition, customers benefit from unmatched application visibility by leveraging Check Point AppWiki, the world’s largest application library, now with over 100,000 Web 2.0 applications and social networking widgets. For more information or to access the full NSS Labs Next Generation Firewall Test report, visit:
“Attacks like Operator Aurora, Koobface and Stuxnet have changed the way the industry thinks about security. And while the threat landscape has evolved drastically over the past several years, our focus has always been to secure the Internet and enable businesses. We remain committed to providing our customers with the tools and protection they need to stay ahead of future threats,” concluded Gonda.
1 NSS Labs Network Intrusion Prevention Systems Comparative Group Test, December 2010.

Leave a Reply