Endpoint Prevention & Response (EPR) Test 2020
AV-Comparatives released the first-ever Endpoint Prevention and Response (EPR) Test, taking into account the total cost of ownership (TCO) of product and breach costs. The EPR CyberRisk Quadrant™ shows at a glance the Strategic Leaders, CyberRisk Visionaries and Strong Challengers.
Worldwide first-ever endpoint prevention and response test for effectiveness and total cost of ownership released by AV-Comparatives
AV-Comparatives’ EPR CyberRisk Quadrant™ shows at a glance the Strategic Leaders, CyberRisk Visionaries and Strong Challengers in the field of endpoint prevention and response
The growth of targeted attacks presents a serious risk to enterprises. Companies are increasingly being targeted by cyber-criminals for reasons of industrial espionage or sabotage. Recent attacks on SolarWinds and United States government agencies are just two examples of many. The complexity of targeted attacks requires very sophisticated prevention and response solutions.
Endpoint prevention and response (EPR) products aim to prevent such attacks, and allow detailed investigation, analysis and response of attempted break-ins. AV-Comparatives has published the report of its Endpoint Prevention and Response Test, which assessed how effective leading EPR products are at stopping and analysing targeted attacks. Tested vendors included Bitdefender, Cisco, CrowdStrike, ESET and Palo Alto Networks. A further four vendors participated but chose to remain anonymous. Their results are included in the report, in order to provide an overview of the performance levels currently available on the market.
Most comprehensive enterprise prevention and response test
AV-Comparatives’ Endpoint Prevention and Response Test is the most comprehensive test of EPR products ever performed. It combines prevention and response results with data on total cost of ownership. The products in the test were subjected to 49 scenarios, which used a variety of different targeted attacks, to measure prevention, active response and passive response.
Time to prevent & time to respond
The report includes the results of the tests, showing at which stage each product provided active or passive response to each threat. In addition, the time taken to prevent and respond was measured over a period of 24 hours.
Enterprise EPR CyberRisk Quadrant™
AV-Comparatives has developed an Enterprise EPR CyberRisk Quadrant™ that factors in the effectiveness of each product at preventing breaches, the calculated savings resulting from this, the purchase costs of the product, and the product’s accuracy costs (incurred due to false positives). This enables prospective purchasers to see the total cost of ownership of each product. Products were classified in three categories in this regard: Strategic Leader, CyberRisk Visionary, and Strong Challenger.
The test considered not only the prevention and response provided by each product, but also the cost of a data breach. This can be USD 3,860,000 according to an IBM study. Using the effectiveness of each product at preventing data breaches, the total cost of ownership was calculated. These results can be used as a basis for cyber-risk insurance policies, amongst other things.
Like all AV-Comparatives’ public reports, the report of the 2020 Endpoint Prevention and Response Test for enterprise products can be downloaded free of charge from the institute’s website, www.av-comparatives.org.