Award-Winning Sourcefire 3D System Integrates Threat and Endpoint Intelligence Capabilities; Latest Version Delivers Integrated NBAD Data, Passive Network Discovery, Surgical Scanning and Increased Remediation Capabilities.COLUMBIA, Md. -- Sourcefire, Inc., the world leader in intrusion prevention See IPS and IDS. , today announced version 4.5 of the Sourcefire 3D System with increased policy enforcement, statistical flow analysis, traffic profiling and remediation capabilities. This new version of Sourcefire's real-time network defense system enables users to identify and analyze both internal and external threats, discover and address vulnerabilities, apply patches to target systems and limit the potential damage from a successful attack. With this release of its award-winning proactive security system, Sourcefire is combining previously disparate security market segments and providing customers with a comprehensive solution for stopping threats. Building on the innovation of its RNA RNA: see nucleic acid. RNA in full ribonucleic acid One of the two main types of nucleic acid (the other being DNA), which functions in cellular protein synthesis in all living cells and replaces DNA as the carrier of genetic technology, the Sourcefire 3D System is the first intrusion prevention system to integrate Network Behavior Anomaly Detection An approach to intrusion detection that establishes a baseline model of behavior for users and components in a computer system or network. Deviations from the baseline cause alerts that direct the attention of human operators to the anomalies. See IDS and anomaly. (NBAD NBAD National Bank of Abu Dhabi NBAD Network Behavior Anomaly Detection ) capabilities into an IPS (1) (Inches Per Second) The measurement of the speed of tape passing by a read/write head or paper passing through a pen plotter. (2) (IPS) (Intrusion Prevention S , providing users with the most accurate and effective intrusion prevention available. Users can set thresholds to measure anomalous activities, customize alerts and automate responses. Now with a single integrated system, users are able to analyze packets, assets and the flow of data over their network for increased threat and vulnerability management. This new release also introduces a Nessus integration module which provides Sourcefire 3D customers the best of both worlds - passive discovery and targeted active scanning - for accurate, timely endpoint intelligence without the drawbacks of active scanning alone. Through integration with Nessus, the Sourcefire 3D System enables customers to pre-define flexible scanning policies that automatically respond to network change. For example, if RNA detects that a new port has been opened on a network asset, Nessus can be triggered to inspect just that port through a surgical scan. The Nessus Scan Input Module also allows users to automatically populate To plug in chips or components into a printed circuit board. A fully populated board is one that contains all the devices it can hold. their Vulnerability Database with Nessus scan data and then maintain the data in real-time via the RNA 24X7 vulnerability feeds. "For companies to effectively implement intrusion prevention, they must also have endpoint intelligence," said Martin Roesch, CTO (Chief Technical Officer) The executive responsible for the technical direction of an organization. See CIO and salary survey. and founder of Sourcefire. "This release of the Sourcefire 3D System provides users with the first system to integrate both active scanning and passive discovery capabilities in order to have accurate real-time endpoint intelligence. No other system provides this integrated combination to allow users to address the full threat spectrum." The new version of the Sourcefire 3D System also provides endpoint intelligence to more products and services. This version delivers increased support for third party remediation tools in response to threats or increased data to other network security products. In addition to built-in modules for CISCO PIX History Cisco PIX (Private Internet EXchange) is a firewall originally conceived in March 1994 by John Mayes of Redwood City, California and coded by Brantley Coiles of Athens, Georgia. and Checkpoint (programming) checkpoint - Saving the current state of a program and its data, including intermediate results, to disk or other non-volatile storage, so that if interrupted the program could be restarted at the point at which the last checkpoint occurred. firewalls, Sourcefire can now interface with the Shavlik Patch Management The installation of patches from a software vendor onto an organization's computers. Patching thousands of PCs and servers is a major issue. A patch should be applied to test machines first before deployment, and the testing environments must represent all the users' PCs with their unique System to automatically trigger the application of patches. In addition, the Sourcefire eStreamer interface has also been extended to allow for more granular granular /gran·u·lar/ (gran´u-lar) made up of or marked by presence of granules or grains. gran·u·lar adj. 1. Composed or appearing to be composed of granules or grains. 2. data access for the leading SIM/SEM/System Management products. "Providing endpoint and network intelligence to network security products significantly improves their capabilities and limits the obstacles to a successful deployment," says Gartner Research Director Amrit Williams in his report titled Use Endpoint Intelligence to Improve Security Defenses. "Organizations deploying network security products should look for their integration with vulnerability assessment A Department of Defense, command, or unit-level evaluation (assessment) to determine the vulnerability of a terrorist attack against an installation, unit, exercise, port, ship, residence, facility, or other site. and network intelligence solutions." About Sourcefire's 3D System Sourcefire's 3D Approach - Discover, Determine, Defend - to securing real networks in real-time provides proactive defense-in-depth through an integrated process of discovering risks, vulnerabilities and threats; determining their business impact; and taking the appropriate action to defend the network. Sourcefire's 3D System, including Sourcefire Intrusion Sensors and Agents, Sourcefire RNA Sensors and the Sourcefire Defense Center, provides companies with the most effective security possible. The Sourcefire 3D System has been awarded both the NSS (Novell Storage Services) A 64-bit file system introduced with NetWare 5 that can support terabyte-sized files. NSS files and standard NetWare files can be used in the same server. See NetWare 5. 1. (networking) NSS - Nodal Switching System. Approved and the prestigious NSS Gold Awards. The Sourcefire 3D System offers the most flexible and precise intrusion prevention and network discovery technologies worldwide. Sourcefire Intrusion Sensors utilize the award-winning Snort An open source network intrusion detection system (NIDS) that is noted for its effectiveness. Developed by Martin Roesch, Snort can also be used just as a packet logger or packet sniffer. For more information, visit www.snort.org. See IDS. (TM) rules-based detection engine, bringing the benefits of signature, protocol, and anomaly-based inspection methods to all network traffic at speeds up to 8 gigabits per second. In addition, Sourcefire RNA Sensors passively monitor a network to deliver highly detailed, real-time profiles of all network assets including their configuration, behavior, potential vulnerabilities and associated changes. By tightly integrating and correlating the threat information provided by Sourcefire Intrusion Sensors and Agents with the network intelligence provided by Sourcefire RNA Sensors, the Sourcefire Defense Center easily prioritizes the millions of security events to determine the most critical events to an organization's business and takes the appropriate actions. These actions follow the ABCs of Defense - Alert, Block, Correct - all in real-time to deliver the most effective security. About Sourcefire Sourcefire, Inc., the world leader in real-time network defense solutions, is transforming the way organizations manage and minimize network security risks with its 3D Approach - Discover, Determine, Defend - to securing real networks in real-time. The company's ground-breaking network defense system unifies intrusion and vulnerability management technologies to provide customers with the most effective network security available. Founded in 2001 by the creator of Snort, Sourcefire is headquartered in Columbia, MD and has received numerous accolades including being named the Frost & Sullivan 2005 Network Security Infrastructure Protection Company of the Year. At work in leading Fortune 1000 and government agencies, the names Sourcefire and founder Martin Roesch have grown synonymous with synonymous with adjective equivalent to, the same as, identical to, similar to, identified with, equal to, tantamount to, interchangeable with, one and the same as innovation and intelligence in network security. For more information about Sourcefire, please visit www.sourcefire.com. |
|
||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion