|
| KLEANMAIL / MANAGED SERVICES / SECURITY / HOSTING / APPLICATIONS |
 |
|
SECURITY - Sourcefire Only Sourcefire addresses the entire real-time network defense challenge. Securing real Networks in real-time  Sourcefire Intrusion Sensors Built on the legacy of the open source Snort® rules-based detection engine, Sourcefire Intrusion Sensors use a powerful combination of signature, protocol, and anomaly-based inspection methods to achieve the maximum attack detection and prevention capability. Every aspect of the sensor can be configured and customized to ensure that users detect and prevent the events most important to them. Flexibility in the rules language and the numerous configuration options (port density, interface types, deployment modes for example) allow users to easily define new ways to identify and prevent threats and enforce policies specific to their individual environment. Sourcefire RNA Sensors™ Using a revolutionary combination of passive network discovery, behavioral profiling and integrated vulnerability management technologies, Sourcefire RNA (Real-time Network Awareness™) Sensors provide the most comprehensive view of security events, and the ideal basis for the most effective network defense. RNA Sensors continually monitor all network assets, (servers, routers, PC’s, firewalls, wireless access points) presenting a real-time view and highly-detailed profiles of all network assets including their configuration, behavior, potential vulnerabilities, and associated changes. This degree of insight and intelligence not only allows organizations to protect their networks with more confidence; it greatly reduces the ongoing costs associated with managing and responding to network threats. Sourcefire Intrusion Agents Sourcefire Intrusion Agents for Snort allow open source Snort users to benefit from the Sourcefire 3D approach while protecting and maximizing their investment in open source Snort deployments. All the intrusion event information from Snort sensors can be aggregated directly into the Sourcefire Defense Center with data from both Sourcefire Intrusion Sensors and Sourcefire RNA Sensors to trigger the ABC’s of Defense -- Alert, Block and Correct. The Sourcefire Defense Center – The Heart of the 3D System By closely integrating and correlating the threat information provided by Sourcefire Intrusion Sensors and Agents with the network intelligence provided by Sourcefire RNA Sensors, the Sourcefire Defense Center prioritizes the millions of security events to determine the most critical events to an organization’s business, and takes the appropriate actions. These actions allow users to leverage the ABCs of Defense – Alert, Block, and Correct -- all in real-time, against all network threats. Alert. Automated warnings to individuals or other management systems via SYSLOG, email, SNMP traps, etc. ensure attack warnings are rapidly addressed. Block. Critical threats are not only blocked, but actually contained or quarantined via techniques including dropping traffic, disrupting sessions between devices, and integrating with access control devices such as firewalls, routers and switches. Correct. New vulnerabilities and threats can be automatically mitigated by integrating with patch or configuration management systems to apply configuration or code changes to eliminate possible exploitation. This high level of contextual intelligence allows customers to determine why a change occurred, whether an attack poses a serious threat to a target, and how to best prioritize and shape the response. The Sourcefire Defense Center allows security administrators to more effectively secure their networks by providing: Bottom line: Only Sourcefire addresses the entire real-time network defense challenge, providing all the benefits of the most complete, end to end network security solution for the real world. |
|
||||||||||
 |
 |
 |
 |
 |
 |
 |
 |
 |
