September 22, 2008

Customers Show Strong Confidence in TippingPoint IPS Solutions

A new study conducted by communications market research firm Infonetics Research and commissioned by intrusion prevention systems (IPS) vendor TippingPoint examines buyer experience with IPS solutions in real world deployments. Investigating how customers purchase, deploy and use solutions from Cisco, IBM-ISS, McAfee, Sourcefire and TippingPoint, the study found that many "IPS" products from key vendors are either not being used in line or have a limited number of filters set to "block" malicious traffic.

Nearly 170 customers - all using and directly managing IPS products - were anonymously surveyed via phone and responded to a variety of questions concerning in-band blocking, filter effectiveness and ease of use. "This survey shows great variability among IPS vendors with regard to IPS security performance and ease of manageability," according to Jeff Wilson, principal network security analyst at Infonetics Research. "Customers showed strong confidence in TippingPoint's ability to deliver in-band solutions and block attacks; TippingPoint also led the pack when customers were asked about IPS configuration experience and plans for new purchases."

Report highlights include:

-- Respondents had more than 90 percent of their TippingPoint IPS devices deployed in-band; significantly higher than the other IPS vendors covered in the report. The top reasons stated for not deploying competing vendors' solutions in-band are reliability, performance and false positive issues.

-- Over 70 percent of TippingPoint's customer-activated filters are set to block traffic, which is higher than all other vendors covered in the report.

-- The average number of attacks blocked per month for customers protected by TippingPoint IPS's was in excess of 235,000 - more than double the number of the next nearest competitor.

-- Other questions asked respondents to rate their IPS vendors on ease of use, including IPS turn-up time and ease of filter configuration. According to Wilson, "This area is among the most significant findings in the study, because many IPS deployments get completely hung up at the initial configuration stage, or misconfigured devices fail to block attacks."

-- TippingPoint scored highest overall, with more than 75 percent of customers installing its IPS in under two hours

-- In terms of configuring IPS filters, two-thirds of TippingPoint customers responded that the initial set-up required a "light effort." All other vendors surveyed had less than 25 percent of respondents saying the same.

"With hackers so focused on exploiting applications to steal credit card numbers, intellectual property, and other assets with instant resell value, customers must deploy IPS's not only at the perimeter but also the data center, the DMZ, and major network segment points," said Neal Hartsell, vice president of worldwide marketing for TippingPoint. "To do that, IPS's must meet stringent uptime, performance, coverage, accuracy and ease of management demands."

"This survey shows that TippingPoint's customers unequivocally trust the TippingPoint IPS solution to sit in-band in the network with a large number of filters enabled to automatically block attacks without negatively affecting network performance," Hartsell added. "Customers are using our platform to prevent intrusions, not merely to sit out-of-band and generate security alerts after the fact."

To receive an upcoming white paper, register at

About Infonetics

Infonetics Research ( is an international communications market research firm. Tracking emerging markets since 1990, Infonetics covers a broad range of service provider, product manufacturer, and enterprise and SMB markets, including network security, enterprise routers and switches, enterprise voice, unified communications, broadband networks, IPTV, IP video, mobile TV, optical networks, metro Ethernet, carrier routing and switching, wireless, FMC, VoIP, IMS, policy management, subscriber management, service management, carrier capex and opex, and more. Services include quarterly market share and forecasting, end-user survey research, service provider survey research, service provider capex analysis, and custom research and consulting.

About TippingPoint

TippingPoint is a leading global provider of comprehensive network security solutions that address the security and regulatory compliance needs of complex network environments for enterprises, government agencies, service providers and academic institutions. With the TippingPoint IPS-Secured Network, which includes the TippingPoint(R) Intrusion Prevention System (IPS) and Network Access Control (NAC) solution, network infrastructure, applications, and critical data are protected from malicious cyber attacks. TippingPoint's 360 degree approach to network security enables enterprises to enforce security policies across all users, devices, traffic flows and content; while preserving existing infrastructure and ensuring business continuity to help lower total cost of ownership. TippingPoint's security intelligence is powered by DVLabs, TippingPoint's premier team of expert internal researchers for vulnerability analysis and discovery. DVLabs is supplemented by over 800 external Zero Day Initiative researchers. For more information, please visit, or the press center at

About 3Com Corporation

3Com Corporation (NASDAQ: COMS) is a leading provider of secure, converged voice and data networking solutions for enterprises of all sizes. 3Com offers a broad line of innovative products backed by world class sales, service and support, which excel at delivering business value for its customers. Through its TippingPoint division, 3Com is a leading provider of network-based intrusion prevention systems that deliver in-depth application protection, infrastructure protection, and performance protection. For further information, please visit, or the press site

Copyright (C) 2008 3Com Corporation. 3Com, the 3Com logo, and TippingPoint are registered trademarks of 3Com Corporation. All other company and product names may be trademarks of their respective holders.