High amount of evasions -- Are they fixed?

Hi Dwayne, the graphic and the results you've seen can be a little misleading as the actual Sophos results were strong and consistent with last year: we had an exploit block rate of 94.5% and an evasion block rate of 93.7% and a TCO (price-per-protected-Mbps) very similar to last year also.

The evasion detections, which were part of a single class, have been addressed with a signature change that will be coming soon to all customers in a regular update.  

The result you see on their SVM chart is due to how they weight the evasion block rate which exaggerates small differences and makes it look much worse than reality.  Rest assured XG Firewall performed well and consistent with our results last year but we are constantly enhancing protection and performance with every release and Sophos Labs is continuously monitoring and enhancing our protection every day against the latest threats.  For example, we've recently added the best tech from our next-gen Intercept X product like deep learning, exploit detection and CryptoGuard into our Sophos Sandstorm sandboxing. It’s unfortunate that these great protection features as well as APT and PUA blocking, and Synchronized Security are not part of the scope of this test.  

Please note that we did not purchase marketing rights this year to their report so we don't have distribution rights.

Regards,

-Chris.

Hi Dwayne, the graphic and the results you've seen can be a little misleading as the actual Sophos results were strong and consistent with last year: we had an exploit block rate of 94.5% and an evasion block rate of 93.7% and a TCO (price-per-protected-Mbps) very similar to last year also.

The evasion detections, which were part of a single class, have been addressed with a signature change that will be coming soon to all customers in a regular update.  

The result you see on their SVM chart is due to how they weight the evasion block rate which exaggerates small differences and makes it look much worse than reality.  Rest assured XG Firewall performed well and consistent with our results last year but we are constantly enhancing protection and performance with every release and Sophos Labs is continuously monitoring and enhancing our protection every day against the latest threats.  For example, we've recently added the best tech from our next-gen Intercept X product like deep learning, exploit detection and CryptoGuard into our Sophos Sandstorm sandboxing. It’s unfortunate that these great protection features as well as APT and PUA blocking, and Synchronized Security are not part of the scope of this test.  

Please note that we did not purchase marketing rights this year to their report so we don't have distribution rights.

Regards,

-Chris.

Chris McCormack said:

Please note that we did not purchase marketing rights this year to their report so we don't have distribution rights.

Hi Chris

Best thanks for your remarks. It would hardly increase the credibility of your explanations, if you would purchase the Report and make it accessible to the public...

Chris McCormack 

It is also concerning to see such poor throughput of the device compared to other vendors. 

"The device is rated by NSS at 5,844 Mbps, which is lower than the vendor claimed performance; Sophos rates this device at 11,800 Mbps."

Any reason for that to be such a difference?

Hi,

the report is now available here: https://secure2.sophos.com/en-us/lp/nss-labs-firewall-test.aspx

Regards:

Dwayne Parker