mcafeeSince marketing automation is mainly about easing and improving business performance, the newly published report of McAfee, titled Network Performance and Security, got our attention this week. The company’s report explores the challenges organizations face in deploying security protections while still maintaining an optimally performing network infrastructure.

Issued at McAfee’s FOCUS 14 conference, the report uncovered that an alarming number of organizations are now disabling advanced firewall features in order to avoid significant network performance degradation.

As part of the report, more than five hundred IT professionals were surveyed, with 60% stating that the design of their company’s network was driven by security. However, more than one-third of respondents admitted to turning off firewall features or declining to enable certain security functions in an effort to increase the performance of their networks.

“It is unfortunate that turning off important firewall features, because of network performance concerns, has started to become common practice,” said Pat Calhoun, General Manager of Network Security at McAfee, part of Intel Security. “At McAfee we believe this is unacceptable. Companies simply should not have to make that kind of trade-off.”

According to the report, the most common features disabled by network administrators include deep packet inspection (DPI), anti-spam, anti-virus, and VPN access.

DPI, the feature most frequently disabled, detects malicious activity within regular network traffic and prevents intrusions by blocking offending traffic automatically before any damage occurs. It is essential for robust threat defenses, and is a key component of next generation firewalls, which now represent 70% of all new firewall purchases.

“When I hear about people turning off security they paid for because of performance decreases -- this upsets me so much,” said Ray Maurer, Chief Technology Officer at Perket Technologies. “I get a bad feeling, knowing I had to remove security in the name of performance. I have a hard time sleeping because it is not a matter of if a network will be compromised, but when.”

Many organizations choose to turn-off DPI because of the high demands it places on network resources, yielding upwards of a 40% degradation of throughput, according to third party research firm, Miercom.

However, McAfee Next Generation Firewall, enabled with DPI, sustained one of the highest firewall throughputs in Miercom’s testing. In fact, McAfee Next Generation Firewall sustained overall much higher throughput performance with security features enabled when compared to other products in this class. Competing products tested exhibited an average of 75% or more performance degradation for DPI, anti-virus and application control when enabled.

According to Calhoun, “with the number of confirmed data breaches climbing more than 200% in 2014 over the previous year, it has never been more critical for organizations to embrace the advanced protections available to them with next generation firewalls. At McAfee, we make it possible to deploy security technology to its full potential, without sacrificing usability or productivity.”

To read Miercom’s Throughput and Scalability Report for McAfee Next Generation Firewall, please visit: www.mcafee.com/ngfw

So, bare in mind that what you win on the swings you lose on the roundabouts.

By MediaBUZZ