ArcSight and Sourcefire Partner to Advance Network Awareness, Threat Detection and Loss Prevention.Business Editors/High-Tech Writers COLUMBIA, Md.--(BUSINESS WIRE)--Nov. 17, 2003 ArcSight and Sourcefire Provide Joint Customers with Increased Network Visibility for More Effective Security Management and Protection Sourcefire, Inc., a world leader in intelligent security monitoring and threat management solutions, and ArcSight, a leading provider of enterprise security risk management software, today announced that ArcSight will add support for the Sourcefire Intelligent Security Monitoring (ISM See ISM band. ) system. This system, including the new Real-time Network Awareness(TM) technology, enables ArcSight to provide customers with accurate and timely network context when managing all of their security functions. By integrating the advanced Sourcefire technologies, ArcSight's security management solution now leverages one of the industry's leading sources of real-time network knowledge and threat detection data. "ArcSight is perfectly positioned to continuously support innovative new products from leading network security vendors like Sourcefire," said Larry Lunetta, vice president of marketing and business development at ArcSight. "Sourcefire's new Real-time Network Awareness will enable joint customers to further populate To plug in chips or components into a printed circuit board. A fully populated board is one that contains all the devices it can hold. ArcSight's unique asset table, by automatically identifying network assets and changes to their configuration in real time. This network knowledge can than be leveraged in ArcSight's award-winning TruThreat(TM) Real Time Correlation which currently prioritizes and manages threats and attacks across a network by correlating vulnerability scanner A vulnerability scanner is a computer program designed to search for and map systems for weaknesses in an application, computer or network. Step 1, typically the scanner will first look for active IP addresses, open ports, OSes and any applications running. data, an asset's business value and real-time alert information." ArcSight has been shipping SmartAgents for the Sourcefire Network Sensor and the Sourcefire Management Console A terminal or workstation used to monitor and control a network. See Microsoft Management Console. to joint customers since 2002, aggregating and normalizing intrusion events and alerts with any other sources of security-relevant information. These events are consequently available for further processing by the ArcSight Manager for advanced real-time correlation and visualization, as well as reporting, forensic analysis and incident investigation. Sourcefire RNA RNA: see nucleic acid. RNA in full ribonucleic acid One of the two main types of nucleic acid (the other being DNA), which functions in cellular protein synthesis in all living cells and replaces DNA as the carrier of genetic offers a unique opportunity to further enhance the effectiveness of the joint offering by adding the valuable real-time knowledge about network assets to ArcSight's enterprise wide management capabilities. Customers turn to ArcSight for a solution that manages and prioritizes the sea of alarms, logs and events that their security infrastructure produces to provide a coordinated infrastructure that maximizes asset protection while decreasing overall costs. In this context, RNA will identify all hosts, operating systems Operating systems can be categorized by technology, ownership, licensing, working state, usage, and by many other characteristics. In practice, many of these groupings may overlap. and applications running on the customer's network and correlate them with known system vulnerabilities. This combined network awareness will then be imported into ArcSight's asset table so that joint customers can react to threats across their security infrastructure in a system-specific manner. This enables the contextual relevance that Sourcefire RNA offers to be utilized throughout the security infrastructure, greatly reducing false positives and increasing the ROI (Return On Investment) The monetary benefits derived from having spent money on developing or revising a system. In the IT world, there are more ways to compute ROI than Carter has liver pills (and for those of you who never heard of that expression, it means a lot). security investments. "As one of the most respected security risk management vendors, ArcSight is an ideal partner for Sourcefire," said Tom McDonough, President and COO of Sourcefire. "ArcSight will allow us to rapidly extend the benefits of RNA to organizations that have made investments in other network security technologies and I believe this partnership represents a key step toward both companies' goals for enhancing security while reducing the cost of security management." About Sourcefire's Products Sourcefire's tightly integrated Intelligent Security Monitoring (ISM) system is the security industry's only unified solution that combines state-of-the-art threat monitoring, system management and real-time network awareness. Each turnkey product includes an integrated ultra-high performance database for advanced event correlation Event Correlation is the processes involved with reducing a large number of incident alerts to a much smaller, more manageable number within automated monitoring and incident/problem management in a Support Management System. and effective system management. This system provides users an ideal combination of superior protection from malicious attacks and extremely high value with low total cost of ownership. All products within Sourcefire's ISM system are delivered as complete appliances, requiring minimal administration and no additional third-party hardware or software. About Real-time Network Awareness(TM) Sourcefire's RNA solution passively monitors an organization's network and provides real-time profile and change information for all network assets including their configurations, behaviors and vulnerabilities. By providing real-time visibility into the status of the network and its assets, RNA provides organizations the context necessary to manage all of their network solutions more efficiently, especially security. Administrators can use this revolutionary system to assess network health, update and enforce policies, monitor and manage vulnerabilities, and effectively prioritize pri·or·i·tize v. pri·or·i·tized, pri·or·i·tiz·ing, pri·or·i·tiz·es Usage Problem v.tr. To arrange or deal with in order of importance. v.intr. their responses to security threats. About ArcSight ArcSight, the 2003 Network Magazine Editor's Choice award winner, is a leading provider of security risk management software that enables large organizations to achieve increased protection, more productivity and greater visibility from their security function. By delivering a single solution for event aggregation, real time analysis, incident investigation and reporting, ArcSight provides a coordinated infrastructure that maximizes asset protection while decreasing overall costs. ArcSight features TruThreat(TM) Risk Correlation, which allows enterprises to focus on the protection of business assets by utilizing vulnerability assessment A Department of Defense, command, or unit-level evaluation (assessment) to determine the vulnerability of a terrorist attack against an installation, unit, exercise, port, ship, residence, facility, or other site. data, asset value and real time alarm information to identify and manage true threats and attacks in real time. ArcSight's customers include major financial services The examples and perspective in this article or section may not represent a worldwide view of the subject. Please [ improve this article] or discuss the issue on the talk page. organizations, government agencies, manufacturers and managed service suppliers such as Harris Corporation Harris Corporation NYSE: HRS is an international communications equipment company that produces wireless equipment, electronic systems, and both terrestrial and spaceborne antennas for use in the government, defense, and commercial sectors. , Union Bank of California Union Bank of California is one of the 30 largest commercial banks in the United States. It has 327 branches, the majority of which are in San Diego, Los Angeles and Orange Counties. , Sandia National Laboratories Sandia National Laboratories, which is managed and operated by the Sandia Corporation (a wholly owned subsidiary of Lockheed Martin Corporation), is a major United States Department of Energy research and development national laboratory with two locations, one in Albuquerque, New , and Corio. More information can be found at http://www.arcsight.com About Sourcefire, Inc. Sourcefire, Inc., a world leader in intelligent security monitoring and threat management solutions, has been recognized throughout the industry for enabling customers to quickly and effectively minimize network security risks. Sourcefire's intrusion detection See IDS and IPS. technologies are the most widely deployed worldwide. The Sourcefire Intelligent Security Monitoring system is the first ever unified security monitoring infrastructure delivering all of the capabilities needed to proactively identify threats and defend against intruders. Founded in 2001 by the creators of Snort An open source network intrusion detection system (NIDS) that is noted for its effectiveness. Developed by Martin Roesch, Snort can also be used just as a packet logger or packet sniffer. For more information, visit www.snort.org. See IDS. (TM), Sourcefire is a privately held company privately held company A firm whose shares are held within a relatively small circle of owners and are not traded publicly. headquartered in Columbia, MD. For more information about Sourcefire, please visit www.sourcefire.com. |
|
||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion