Efficacy of Microsegmentation: Assessment Report
Microsegmentation is an essential security control that prevents the lateral movement of attackers. It's proven to be critical to Zero Trust security. But how can organizations measure the value of microsegmentation? What are the numbers that prove it?
The "Efficacy of Microsegmentation: Assessment Report" answers those questions and serves as a testing methodology blueprint that can help organizations validate results in their own environments.
Through its implementation of the MITRE ATT&CK framework, Bishop Fox conducted several rounds of testing against varying degrees of policy granularity to measure the ability of microsegmentation to effectively limit lateral movement.
Key findings include:
- A 300% increase in difficulty for an attacker to move laterally and reach its target by applying simple microsegmentation policy such as environmental separation.
- A 450% increase in difficulty by applying application ring-fencing policy.
- "Wouldn’t you like to make the adversary’s job anywhere between 3x – 10x more difficult? If so, implement microsegmentation."
Download the full report for in-depth observations, additional findings, and recommendations.