November 26, 2024 at 11:31AM
CyberRatings.org has completed a “Mini-Test” of native firewalls from AWS, Azure, and GCP, assessing their security effectiveness against 522 exploits. Results showed protection effectiveness ranging from 0.38% to 50.57%. The findings raise concerns about reliance on CSP firewalls, urging customers to consider third-party solutions. A second, more rigorous test is planned.
### Key Takeaways from CyberRatings.org Press Release
1. **Overview of Testing**: CyberRatings.org conducted an independent “Mini-Test” of Cloud Service Provider Native Firewalls from Amazon Web Services (AWS), Microsoft Azure, and Google Cloud Platform (GCP).
2. **Results Summary**: The security effectiveness protection of these firewalls ranged between 0.38% and 50.57%.
3. **Testing Methodology**: The firewalls were evaluated against 522 exploits using Keysight’s CyPerf v5.0. The assessment focused solely on known Common Vulnerabilities and Exposures (CVEs) from the past decade with a medium or higher severity level.
4. **Security Concerns**: CEO Vikram Phatak expressed concerns over the number of missed exploits, recommending organizations consider third-party firewall solutions that have demonstrated better security effectiveness until CSP native firewalls improve.
5. **Future Testing Plans**: This test is part one of a larger study; part two will include a greater number of exploits and comparisons between native solutions and leading third-party firewall providers.
6. **Accessibility of Results**: The test results can be accessed for free at cyberratings.org. Enterprises can also replicate the testing through a 2-week free trial with Keysight.
7. **Organization Background**: CyberRatings.org is a non-profit focused on providing independent and objective ratings of cybersecurity products to help enterprises make informed decisions.
8. **Call to Action**: Interested enterprises are encouraged to visit CyberRatings.org for more information on membership and follow them on LinkedIn.