Products
SHARE
Facebook X Pinterest WhatsApp

McAfee NSP: IDPS Product Overview and Analysis

See our complete list of top Intrusion Detection and Prevention Systems. Company Description Thirty-year-old McAfee was acquired by Intel in 2011 and last year became a limited liability company and an indirect, wholly-owned subsidiary of Foundation Technology Worldwide LLC. Product Description The McAfee Network Security Platform (NSP) is a network threat and intrusion prevention solution […]

Written By
thumbnail Drew Robb
Drew Robb
Feb 20, 2018
eSecurity Planet content and product recommendations are editorially independent. We may make money when you click on links to our partners. Learn More

See our complete list of top Intrusion Detection and Prevention Systems.

Company Description

Thirty-year-old McAfee was acquired by Intel in 2011 and last year became a limited liability company and an indirect, wholly-owned subsidiary of Foundation Technology Worldwide LLC.

Product Description

The McAfee Network Security Platform (NSP) is a network threat and intrusion prevention solution that protects systems and data wherever they reside, across the data center, the cloud, and hybrid enterprise environments. McAfee NSP finds and blocks advanced targeted attacks on the network. Features include:

  • SSL Decryption
  • Close to stated performance metrics when all necessary features are enabled
  • Behavioral analysis and learning engines
  • Multiple signatureless detection methods
  • Automation and integration into endpoint security.
  • Ability to share actionable intelligence with Web, Email and Endpoint as well as consume intelligence and reputation information generated by the Web, Email and Endpoint solutions.
  • Performance – inspection of network traffic while maintaining line-rate speed
  • Streamlined security management – the McAfee Unified Defense Architecture integrates real-time McAfee Global Threat Intelligence Exchange feeds with McAfee Advanced Threat Defense and McAfee Cloud Threat Detection solutions.

“Our Unified Defense Architecture approach to security management streamlines security operations by combining real-time McAfee Global Threat Intelligence feeds with rich contextual data about users, devices, and applications for fast, accurate response to network-borne attacks,” the company said.

Gartner gives NSP high marks for its sophisticated policy options, ease of deployment, performance, cloud capability and multiple signatureless inspection techniques, but the lack of a firewall line and a complicated user interface are drawbacks.

Markets and Use Cases

NSP is deployed across all market segments whether in the data center, cloud, or hybrid enterprise environments. The most common use case for virtual Network Security Platform (NSP) in the cloud is East-West (inter-VM) traffic protection, while also employing physical sensors for North-South traffic. This leverages physical sensors for high-throughput inspection, and virtual sensors for inspection of the dynamic software-defined network (SDN) segments. This architecture is also suited to hybrid cloud deployments, as it allows the uniform enforcement of network security policies between the two.

Metrics

Aggregate Performance – 40 Gbps; Maximum number of connections for decrypted SSL traffic as a percentage – ranges from 40,000 connections (on the 100 Mbps appliance) up to 32 million connections (on the 40 Gbps appliance) with 10% SSL traffic mix; Maximum concurrent sessions – 32 million.

Intelligence

NSP offers: bot analysis to correlate multiple suspicious behaviors to uncover unknown bot or zero-day attacks; endpoint-enhanced application control to aid in application blocking decisions, especially when it comes to stealthy exfiltration; malware analysis engines to combat advanced malware, including JavaScript & Flash emulation, a real-time web browser emulation engine (GAM), and sandboxing; analysis of flow data (including layer 7 data) looking for anomalous behavior pointing infections of bots, worms, recon attacks and DoS/DDoS attacks; self-learning DoS profiles to analyze traffic patterns for DoS, DDoS, SYN-floods, FIN-flood, ACK-flood, DNS-flood attacks, as well as heuristic gray-list and anti-phishing detection; and an analytics feature to report potentially malicious hosts, i.e., High-risk Endpoint (HRE) based on threat analytics.

NSP offers: bot analysis, endpoint-enhanced application control, analysis of flow data, self-learning DoS profiles and analytics to report potentially malicious hosts.

Delivery

NSP can be deployed as a physical or virtual appliance.

Agents

No agents are necessary for on-premises and private data center deployment. For public cloud deployment (AWS/Azure), a probe (agent) must be deployed on workloads for the north-south and east-west protection desired on the network layer.

Pricing

Available in virtual and physical form factors, starting from $10,995. The McAfee Global Threat Intelligence (GTI) service is provided at no additional charge. McAfee Threat Intelligence Exchange (TIE) is sold separately with per-node pricing (no fee to connect and interact with NSP).  A free virtual instance of McAfee Network Behavior Analysis (NTBA) is included with any NSP Manager purchase.

thumbnail Drew Robb

Originally from Scotland, Drew Robb has been a writer for more than 25 years. He lives in Florida and specializes in IT, engineering, and business. As well as eWeek and TechRepublic, he writes for a wide range of magazines including Gas Turbine World, SDxCentral, and HR Magazine. He is the author of Server Disk Management in a Windows Environment (Auerbach Publications).

Recommended for you...

thumbnail 6 Under-the-Radar Vendors That Supercharge Breach and Attack Simulation
Products
6 Under-the-Radar Vendors That Supercharge Breach and Attack Simulation
Matt Gonzales
Oct 14, 2025
thumbnail Proxy vs VPN: Which One Do You Really Need?
Products
Proxy vs VPN: Which One Do You Really Need?
Matt Gonzales
Sep 24, 2025
thumbnail 5 AWS Security Tools Every Team Should Know
Products
5 AWS Security Tools Every Team Should Know
Matt Gonzales
Sep 24, 2025
thumbnail The 6 Best Email Security Software & Solutions (Compared and Reviewed)
Products
The 6 Best Email Security Software & Solutions (Compared and Reviewed)
Matt Gonzales
Sep 24, 2025
eSecurity Planet Logo

eSecurity Planet is a leading resource for IT professionals at large enterprises who are actively researching cybersecurity vendors and latest trends. eSecurity Planet focuses on providing instruction for how to approach common security challenges, as well as informational deep-dives about advanced cybersecurity topics.

facebook
linkedin
x

Company

About us Contact us Advertise with us

Categories

Best Products Networks Cloud Threats Trends Endpoint Applications Compliance

Property of TechnologyAdvice. © 2025 TechnologyAdvice. All Rights Reserved

Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.

Terms of Service Privacy Policy California - Do Not Sell My Information