Vendors old and new have laid claim to the next-generation
moniker. The field has become crowded with dozens of endpoint
security products marketed as game-changers. Some may
include behavioral detection elements. Others might offer some
degree of machine learning. Still others might claim to offer
But scratch below the surface of these new solutions and it becomes
apparent that most are simply iterations on the old platforms
that powered the first generation of endpoint protection.
While they might incorporate one or two new methods, the majority
still rely heavily on dated techniques such as signature-based
threat detection and increasingly obsolete architectures designed
for on-premises delivery. As a result, even when they're sold as
cloud solutions, they're highly segmented and lack the scale and
efficacy of a purpose-built cloud solution.
And most detrimentally, the majority of endpoint solutions are
still fixated on stopping malicious executables rather than seeking
out indicators of attack (IOAs) that can point to breach activity,
even when malware isn't present.
CrowdStrike® believes it takes more than a few new detection features
to qualify as a true next-generation endpoint security platform.
Real "next-gen" solutions should offer a complete package of more
advanced technology and human-powered intelligence to meet sophisticated
attacks head-on. For an endpoint security product to be
taken seriously as a next-generation solution, it needs to deliver the
kind of anticipation, prevention, detection, visibility, and intelligence
that can beat a determined attacker time and time again.
In order to find those capabilities, decision-makers should look
for five crucial elements in a next-generation endpoint security