Media releases are provided as is by companies and have not been edited or checked for accuracy. Any queries should be directed to the company itself.
  • 27 February 2013 13:13

Websense TRITON Trumps All Vendors Within Independent Security Effectiveness Test

Results show Websense real-time defenses cover breadth of cyber kill chain, including data theft detection

SAN FRANCISCO - February 26, 2013 - Miercom, the well-respected worldwide testing service, recently conducted one of the largest independent tests of real-world threat protection capabilities of web security systems. Results show that Websense, Inc. (NASDAQ: WBSN) demonstrated superior security effectiveness, threat detection and mitigation capabilities over the other tested systems.

The test pitted Websense® TRITON™ Web Security Gateway Anywhere, powered by the Websense Advanced Classification Engine (ACE), against web security systems offered by Blue Coat® Systems, Inc., Cisco®, McAfee®, Palo Alto Networks™ and FireEye®, Inc. The results are published and available at Findings clearly prove that Websense demonstrated superior capabilities in the areas of web security effectiveness, modern malware threat stages, data theft and loss protection, malware sandboxing and forensic reporting, and manageability and effectiveness.

“It’s clear from our testing that Websense TRITON Web Security Gateway Anywhere has stronger detection capabilities across advanced threat stages,” said Robert Smithers, chief executive officer, Miercom. “To truly mimic a real-world environment, we tested 2.2 million open live web requests of an unknown nature. This is a departure from traditional testing methods, which typically use known samples and produce artificially high results compared to real-world experience.”

Miercom’s methodology allowed each solution to have a fair and equal chance of analysing, classifying and blocking threats in real-time as they would on a business network. Using an unknown sample is key when identifying crucial security effectiveness metrics against day-to-day and advanced attacks. Attack methods include zero-day exploits, targeted and timed attacks, spear-phishing, lures and redirects hidden in social networking. This research tactic tested predictive defences that aim to proactively protect users when they click on web links in real time.

“With Websense TRITON, we are confident that we have created the most innovative and effective security for today’s businesses, and this report proves it,” said Russ Dietz, chief technology officer of Websense. “Threats are cracking enterprises on an almost daily basis because as an industry, many organisations are reliant on outdated security products. The Miercom testing results confirm that nothing can match security delivered by the unified web, email and data intelligence of TRITON.”

Miercom Security Effectiveness Test Results

This Miercom testing was conducted in January of 2013. The effectiveness and validation tests addressed five security areas including: web security effectiveness, modern malware threat stages, data theft and loss protection, malware sandboxing and forensic reporting, and manageability and effectiveness.

· The web security effectiveness test used a data set of more than 2.2 million live web requests. These requests were of an unknown nature and targeted the web server through the web gateway. Websense correctly blocked 68 percent more malicious links, suspicious links, exploit kits, malware and other associated threats than the next ranking competitor.

· The modern malware threat stages test determined the systems’ ability to detect and defend against kill chain stages, including individual detection of exploit kits, lures and dropper files. Again, the accumulated Websense scores were higher than all other units tested.

· Data theft and loss protection capabilities for Websense TRITON Web Security Gateway Anywhere were tested using six data theft and loss scenarios, including: custom encrypted file detection; password file data theft; optical character recognition of text within an image to protect confidential data; slow (or cumulative) data leak detection; and geo-location awareness. Again, Miercom validated Websense’s innovative features for data theft and loss.

· Malware sandboxing and forensic reporting is critical to understand malware infection steps, system changes and call-home communications. Organisations need to know who was attacked, how they were attacked, where communications were destined, and what data was targeted with data theft capture. Websense TRITON Web Security Gateway Anywhere and the ThreatScope™ malware sandbox scored higher than the FireEye MPS appliance, in a comparison of the two solutions side by side.

· The most effective security isn’t any good if it isn’t easily manageable. In the manageability and effectiveness review, Miercom determined the relative value of: the management dashboard; unified policy creation and management capabilities; standard and custom security reporting; and the action ability of the information gathered. Miercom again found Websense was unrivaled.

“This test speaks volumes on why the majority of today’s security products fail,” said Dietz. “Far too many security vendors wait and try to stop the final deliverable - the malware itself - only if they know the signature. Our research has shown that by disrupting any link in the attack chain, organisations can significantly increase their effectiveness in thwarting these persistent attacks.”

The Websense ACE security defenses are the foundation for Websense TRITON Web Security Gateway Anywhere effectiveness. ACE combines seven in-depth defenses using composite scoring with predictive analysis. More than 10,000 analytics within ACE are derived from the ThreatSeeker™ Intelligence Cloud, which unites more than 900 million endpoints and analyses up to five billion requests per day. ACE defenses are utilised within the Websense ThreatScope™ malware analysis sandbox and TRITON web, email, data and mobile security solutions.

“The Miercom data speaks for itself and the implications are clear. When you are facing real-world network traffic - not just a canned collection of known threats—features like Websense’s real-time, inline defenses provide a clear advantage, and could likely be the difference in protecting an organisation,” said Dietz.

The Miercom report is available in its entirety, including detailed test methodology and results, online at

About Websense, Inc.

Websense, Inc. (NASDAQ: WBSN) is a global leader in protecting organisations from the latest cyber attacks and data theft. Websense TRITON comprehensive security solutions unify web security, email security, mobile security and data loss prevention (DLP) at the lowest total cost of ownership. Tens of thousands of enterprises rely on Websense TRITON security intelligence to stop advanced persistent threats, targeted attacks and evolving malware. Websense prevents data breaches, intellectual property theft and enforces security compliance and best practices. A global network of channel partners distributes scalable, unified appliance- and cloud-based Websense TRITON solutions.

Websense TRITON stops more threats, visit to see proof. To access the latest Websense security insights and connect through social media, please visit For more information, visit and

About Miercom, Inc.

Miercom has hundreds of product-comparison analyses published over the years in leading network trade periodicals including Network World, Business Communications Review, Tech Web - NoJitter, Communications News, xchange, Internet Telephony and other leading publications.

Miercom’s private test services include competitive product analyses, as well as individual product evaluations. Miercom features comprehensive certification and test programs including: Certified Interoperable, Certified Reliable, Certified Secure and Certified Green. The Performance Verified program is a thorough and trusted assessment for product usability and performance.

For more information, contact Miercom via

Submit a media release

Editor's Recommendations

Solution Centres


View all events Submit your own security event

Latest Videos

  • 150x50

    CSO Webinar: The Human Factor - Your people are your biggest security weakness

    ​Speakers: David Lacey, Researcher and former CISO Royal Mail David Turner - Global Risk Management Expert Mark Guntrip - Group Manager, Email Protection, Proofpoint

    Play Video

  • 150x50

    CSO Webinar: Current ransomware defences are failing – but machine learning can drive a more proactive solution

    Speakers • Ty Miller, Director, Threat Intelligence • Mark Gregory, Leader, Network Engineering Research Group, RMIT • Jeff Lanza, Retired FBI Agent (USA) • Andy Solterbeck, VP Asia Pacific, Cylance • David Braue, CSO MC/Moderator What to expect: ​Hear from industry experts on the local and global ransomware threat landscape. Explore a new approach to dealing with ransomware using machine-learning techniques and by thinking about the problem in a fundamentally different way. Apply techniques for gathering insight into ransomware behaviour and find out what elements must go into a truly effective ransomware defence. Get a first-hand look at how ransomware actually works in practice, and how machine-learning techniques can pick up on its activities long before your employees do.

    Play Video

  • 150x50

    CSO Webinar: Get real about metadata to avoid a false sense of security

    Speakers: • Anthony Caruana – CSO MC and moderator • Ian Farquhar, Worldwide Virtual Security Team Lead, Gigamon • John Lindsay, Former CTO, iiNet • Skeeve Stevens, Futurist, Future Sumo • David Vaile - Vice chair of APF, Co-Convenor of the Cyberspace Law And Policy Community, UNSW Law Faculty This webinar covers: - A 101 on metadata - what it is and how to use it - Insight into a typical attack, what happens and what we would find when looking into the metadata - How to collect metadata, use this to detect attacks and get greater insight into how you can use this to protect your organisation - Learn how much raw data and metadata to retain and how long for - Get a reality check on how you're using your metadata and if this is enough to secure your organisation

    Play Video

  • 150x50

    CSO Webinar: How banking trojans work and how you can stop them

    CSO Webinar: How banking trojans work and how you can stop them Featuring: • John Baird, Director of Global Technology Production, Deutsche Bank • Samantha Macleod, GM Cyber Security, ME Bank • Sherrod DeGrippo, Director of Emerging Threats, Proofpoint (USA)

    Play Video

  • 150x50

    IDG Live Webinar:The right collaboration strategy will help your business take flight

    Speakers - Mike Harris, Engineering Services Manager, Jetstar - Christopher Johnson, IT Director APAC, 20th Century Fox - Brent Maxwell, Director of Information Systems, THE ICONIC - IDG MC/Moderator Anthony Caruana

    Play Video

More videos

Blog Posts

Media Release

More media release