Sourcefire

Sourcefire’s offering provides users with unprecedented visibility and awareness,
accurate detection & powerful automation and integration – delivering unparalleled protection.

Sourcefire’s Agile Security emphasises the need for more informed, adaptive and automated security solutions to protect today's dynamic IT environments from constantly changing threats.

It ties together an organisation’s entire security
infrastructure, from network to endpoint, an approach that continuously loops through this process in real-time, closing the gap between the time an event occurs and when action takes place. 

 

 

Sourcefire Network Security
Agile Security Solutions for Your Network

Sourcefire's flagship family of intrusion detection and prevention systems (IDS/IPS) lies at the heart of their security solutions portfolio. They offer standalone Next-Generation IPS (NGIPS) solutions, the only Next-Generation Firewall solution with NGIPS built-in, as well as several complementary products to protect your network.

SP and Sourefire

As a Sourcefire Gold Partner SP are in an unrivalled position to aid our customers in making the most out of the ever expanding and improving Sourcefire product portfolio and realising the full potential from these products.

Agile Security for the Real World

“Next-generation network IPS will be incorporated within a next-generation firewall, but most next-generation firewall products currently include first-generation IPS capabilities.”
-- “Defining Next-Generation Network Intrusion Prevention,” Gartner, 7 October 2011

In an attempt to provide effective protection, NGFWs have added application control to the access control capabilities provided by traditional firewalls. This isn’t enough.  With the Sourcefire Next-Generation Firewall, Sourcefire extends the power of Agile Security™ and its leadership in Next-Generation IPS (NGIPS) to NGFWs. For the first time, customers can support access and application control policies today without sacrificing protection tomorrow.

The Sourcefire NGFW is the only solution of its kind to add best-in-class threat prevention and robust access and application control to advanced firewall capabilities.

Key Sourcefire NGFW Capabilities

Stateful firewall inspection NGIPS threat prevention
Switching, routing & NAT Automated impact assessment & policy tuning
Application control Network behavior analysis
Real-time network and user intelligence Sensitive data filtering
IT policy compliance whitelists URL filtering (optional)


What a Next-Generation Firewall Should Be

Designed for organizations that want ultimate flexibility to deploy appliances to match their infrastructure needs and scale over time, the Sourcefire NGFW delivers unique advantages to combat threats in today’s real world:

  • Total Network Visibility: Sourcefire realized long ago that you can’t protect what you can’t see. Our FireSIGHT® technology gives you passive, real-time visibility of hosts, applications, operating systems, users, content, attacks, and more.
  • Control Without Compromise: With NGIPS built-in, you get third-party validated, best-in-class threat prevention as part of your NGFW. When combined with granular application and URL access control down to the individual user, you’ve got the total network protection you need today and tomorrow.
  • Intelligent Security Automation: Because there aren’t enough hours in the day or people on staff to keep pace with changing environments and threats, Sourcefire NGFW allows you to automate more administrative functions than any other NGFW solution.
  • Unparalleled Performance and Scalability: You need more protection but you also need to maintain network performance. Our appliances, based on single-pass architecture and FirePOWER™ technology, deliver stateful firewall inspected throughput options ranging from 40Gbps down to 1Gbps with minimal degradation as security functions are added.
     

 Product Sheet

 

 

Automate Security with Contextual Awareness

Today’s IT organizations need a dynamic approach to defending the network—one that uses awareness and automation to provide visibility and context while constantly adapting to new threats, new vulnerabilities, and everyday network changes.

As the pioneer of Next-Generation Intrusion Prevention Systems back in 2003 and now the first to deliver NGIPS with integrated Application Control, Sourcefire bases its NGIPS solutions on the core competencies of contextual awareness and automation—recognized by Gartner as key ingredients of a next-generation network intrusion prevention system.  

Delivering on the Sourcefire vision of Agile Security™, and fueled by the Sourcefire FirePOWER™ performance platform and sophisticated Sourcefire FireSIGHT® network intelligence, Sourcefire’s NGIPS stands apart, offering:

  • Advanced Threat Protection: The best threat prevention that money can buy as validated by independent third-party testing and thousands of satisfied customers around the world

Tested Protection

Sourcefire’s performance in comparison to industry averages in NSS Labs’ 2010 Comparative Test Results.

  • Real-time Contextual Awareness: See and correlate extensive amounts of event data related to IT environments—applications, users, devices, operating systems, vulnerabilities, services, processes, network behaviors, files and threats
  • Intelligent Security Automation: Automated event impact assessment, IPS policy tuning, policy management, network behavior analysis, and user identification significantly lower the total cost of ownership and enhance the ability to keep pace with changing environments

Lower TCO

  • Unparalleled Performance and Scalability: Purpose-built appliances incorporate a low-latency, single-pass design for unprecedented performance and scalability – throughput speeds from 40Gbps down to 5Mbps for threat inspection and up to 80Gpbs for packet filtering 
  • Application Control & URL Filtering (Optional): Reduce the surface area of attack through granular control of over 1000 apps and 100s of millions of URLs in over 80 categories.

More organizations around the world deploy Sourcefire intrusion prevention technology, based on Snort® and backed by the Sourcefire Vulnerability Research Team™, than any other.

 

  Product Sheet

AMPlify Your Security™ with Advanced Malware Protection

Malware has changed dramatically since the first PC viruses appeared nearly 25 years ago. Today, malware is more sophisticated and evolving more quickly than ever before. Many customers find it impossible to keep up. Recent Sourcefire research suggests that as many as 75% of new attacks are seen on a single system.

Sourcefire FireAMP is the only solution that provides the visibility and control you need to stop threats missed by other security layers. FireAMP is an intelligent, enterprise-class advanced malware analysis and protection solution that uses big data to discover, understand and block advanced malware outbreaks, advanced persistent threats (APTs) and targeted attacks. For the first time customers can get answers to questions like:

  • Where did the attack start?
  • How did it spread?
  • How can the outbreak be controlled?

FireAMP uses more than 400 characteristics associated with each file for advanced malware analysis and malware protection.

AMPlify Your Security

Visibility: See more than ever before. Identify the root cause of the threat, how it has spread, and the specific behavior of the malware.

Control: Contain outbreaks and block future attacks. FireAMP offers Outbreak Control to tag and quarantine malware and Cloud Recall™ for malware removal on affected systems without a full scan.

Enterprise-ready: Scale protection. FireAMP works with existing security layers, for example intrusion detection and prevention (IDS/IPS), next-generation firewall (NGFW), and other anti-malware solutions, as part of a defense-in-depth strategy and delivers the performance, manageability, and scalability that organizations require.

 

  Product Sheet