12/01/2023 | News release | Distributed by Public on 12/01/2023 18:38
What's the difference between Trellix Endpoint Protection and BlackBerry CylanceENDPOINT™? If you're evaluating these two endpoint protection platforms (EPPs), the most critical metrics to consider are efficacy and efficiency. A recent analysis evaluated Trellix Endpoint vs. CylanceENDPOINT and revealed drastically different outcomes.
Tolly Group is a premier independent test lab and provider of third-party validation services to the IT industry. It has evaluated many of the most important products and technologies to appear over the past decade, including EPPs. The following results are drawn from a 2023 Tolly Group EPP analysis.
Preventing cyberattacks is the principal reason many organizations invest in endpoint protection. So how effective is Trellix Endpoint in detecting and blocking threats, and how does it compare to CylanceENDPOINT?
Tolly Group put these EPPs to the test using two collections of 1,000 real-world malware samples running in a Windows® 10 environment. Then they measured how effective the products were at detecting and eliminating the threats, separately evaluating performance when the test system had an active internet/cloud connection, and when it didn't.
Following the evaluation, Tolly Group concluded that CylanceENDPOINT "delivered superior threat protection both offline and online to ensure safety from malicious files, regardless of internet connectivity status."
These results are extremely informative for organizations that:
It's reassuring to know that organizations can still detect and block 98.9% of threats when systems are temporarily offline, or air-gapped for the long term.
The efficiency of an endpoint protection platform is also crucial because intense resource usage can impede user productivity, slow business-critical computing processes, and shorten the lifespan of your IT equipment. Tolly Group compared the CPU (central processing unit) usage of Trellix Endpoint Protection against BlackBerry CylanceENDPOINT. Here are the results of how each solution utilized valuable Windows resources:
The bottom line? CylanceENDPOINT represents a 95% resource savings vs. Trellix Endpoint.
Tolly Group's conclusion about the efficiency test was that CylanceENDPOINT offers "dramatically lower CPU resource consumption while scanning, enabling computer resources to be available for end-user business tasks." Tolly went on to state that CylanceENDPOINT "will help extend the lifecycle of endpoints it protects by minimizing continued resource utilizations and eliminating expensive device reimaging cycles caused by malware breaches."
There is another metric to consider when choosing an EPP, which combines both threat detection efficacy and efficiency, based on the time required to detect and analyze incoming threats. Here's how long it took each platform to detect all threats in the samples:
In this test, when connected, CylanceENDPOINT detected all threats more than two hours faster than Trellix Endpoint. This gap widened significantly when the EPPs were disconnected from the cloud.
The Tolly Group executive summary highlights what organizations evaluating endpoint protection plans need to know:
"Endpoint security is essential, but there can be a hidden price to pay when it comes to how some solutions use system resources. While computing systems, physical and virtual, continually become more powerful, new and updated applications are ever more hungry for those resources. BlackBerry's focus is on providing superior endpoint protection - even in offline environments - while consuming minimal system resources."
These findings are supported by the fact that BlackBerry CylanceENDPOINT blocks up to 54% more threats than Trellix Endpoint, uses 20 times fewer system resources, and is roughly four times faster.
Related Reading
Paul Zimski is Vice President of Product and Technical Marketing at BlackBerry.