| Collateral |
| Corporate |
Corporate Backgrounder (factsheet - pdf)
This five-page factsheet provides an overview of Sourcefire’s financial background, products/technology, awards/certifications, open source strength, management team, and services. |
| Products |
Sourcefire 3D System - Product Overview (pdf 2.1mb)
This 16-page brochure highlights the benefits of: the Sourcefire 3D System and its components, Snort, the Sourcefire Vulnerability Research Team, and Network Behavior Anomaly Detection. It also addresses the need for context in intrusion prevention. |
Sourcefire 3D System - Appliance Specifications (pdf 692kb)
Specification matrix covering the full range of appliances within the Sourcefire 3D System family. (Sourcefire 3D Sensor and Defense Center) |
Sourcefire IPS Overview (pdf 360kb)
This two-page factsheet covers the power, flexibility, precision, scalability, and performance of Sourcefire IPS. |
Sourcefire NBA Overview (pdf 292kb)
This two-page factsheet covers the benefits of the latest generation layered defense with Network Behavior Analysis (NBA), to Sourcefire's ETM. |
Sourcefire RUA Overview (pdf 672kb)
This two-page factsheet covers the benefits of integrated user awareness to Sourcefire's ETM. |
Sourcefire VA Overview (pdf 870kb)
This two-page factsheet covers the benefits of 'actionable' intelligence with Sourcefire Vulnerability Assessment (VA). |
Sourcefire Intrusion Agent for Snort (pdf 404kb)
Two-page factsheet on the Sourcefire Intrusion Agent for Snort, a Sourcefire software product that
installs directly on top of open source Snort sensors. When used in conjunction with a Sourcefire Defense Center™ appliance, the Sourcefire Intrusion Agent affords Snort users with powerful new capabilities. |
IS3000 - NSS Approved (pdf 704kb)
This two-page factsheet showcases the NSS test highlights, performance, security effectiveness, and usability of the IS3000. |
Sourcefire 3D for Crossbeam (pdf 764kb)
This two-page factsheet addresses the benefits of choosing Sourcefire 3D System for Crossbeam including: best-in-class integrated security, high availability, investment protection, performance/scalability, and ROI savings. |
 |
| Technology Briefs |
The Sourcefire Ecosystem
The Enterprise Threat Management solution from Sourcefire, is a true, enterprise-class system
which combines several, highly complementary threat and vulnerability management technologies enhanced by shared intelligence and coordinated by a single management platform. |
The Sourcefire Approach to NBA
Bringing clarity to what NBA is, identifying and qualifying the value propositions, and exploring the advantages for today's enterprise security needs using Sourcefire's approach to NBA.
|
The Sourcefire Approach to NAC
Bringing clarity to what NAC is, identifying and qualifying the value propositions, and exploring the optimal path for today's enterprise security needs with Sourcefire's approach to NAC.
|
The Power of Sourcefire RUA
Sourcefire Real-time User Awareness (RUA) offers a solution to the problem of mapping IP addresses connected to a network with useable user identity information.
|
Extending Your Investment in Snort
Extending the solid foundation of open source SNORT IPS with the Sourcefire 3D System to achieve the complete ETM solution.
|
The Impact of Virtualization on Network Security
Virtualization is a concept that has become highly
visible in the last few years because of its perceived benefits in reducing costs, enabling
rapid deployment, and improving system availability. With all of its benefits, however, virtualization also
creates many new security risks that security professionals should be aware of.
|
|
| Industry |
Sourcefire Telecommunications Overview (pdf 812kb)
This eight-page document provides an overview of the need for network security within the ultra-competitive telecommunications industry. Issues include: the security demands of the booming wireless and VoIP technologies, and being able to offer a "multi-play" solution. The document also discusses how the Sourcefire 3D System components and Snort can provide next-generation protection for the telecommunications industry. |
Sourcefire Education Overview (pdf 606kb)
This eight-page document provides an overview of the need for network security within the Higher Education community. Issues include: file sharing and copyright liability, diverse applications and technology, remote/distance learning, and broad population with unmanaged computing devices. The document also discusses how the Sourcefire 3D System components and Snort can provide next-generation protection for Higher Education. |
Sourcefire Energy Overview (pdf 604kb)
This eight-page document provides an overview of the need for network security within the Power and Energy industry. Issues include: SCADA and process control systems, NERC 1300 standards, modernization of power plant infrastructure, operations continuity, industry deregulation, and continuous monitoring of geographically dispersed distribution components. The document also discusses how the Sourcefire 3D System components and Snort can provide next-generation protection for the Power and Energy industry. |
Sourcefire Financial Overview (pdf 609kb)
This eight-page document provides an overview of the need for network security within the Financial Services industry. Issues include: compliance with regulations such as the Gramm-Leach-Bliley Act and the Basel II Accord; the need to treat IT security as part of an organization's critical infrastructure; managing legacy computing systems; the impact of new technologies on IT security; the need to control costs; and the need for higher availability, capacity, and performance. The document also discusses how the Sourcefire 3D System components and Snort can provide next-generation protection for the Financial Services industry. |
Sourcefire Gov't/Public Sector Overview (pdf 603kb)
This eight-page document provides an overview of the need for network security within the Government and Public Sector community. Issues include: FISMA, Computer Security Act of 1987, state security breach laws, highly distributed operations, classified and personal information in databases, and wide variety of modern and legacy systems. The document also discusses how the Sourcefire 3D System components and Snort can provide next-generation protection for the Government and Public Sector community. |
Sourcefire Healthcare Overview (pdf 607kb)
This eight-page document provides an overview of the need for network security within the Healthcare community. Issues include: HIPAA, FDA regulations, patient care enhancement, cost controls, new computer networks and applications, and personal information in databases. The document also discusses how the Sourcefire 3D System components and Snort can provide next-generation protection for the Healthcare community. |
Sourcefire Retail Overview (pdf 685kb)
This eight-page document provides an overview of the need for network security within the Retail industry. Issues include: PCI Data Security Standard, information flow enhancement, cost controls, ecommerce, wide variety of network-based applications, new technologies, and personal and credit card information collection and storage. The document also discusses how the Sourcefire 3D System components and Snort can provide next-generation protection for the Retail industry. |
|
| Compliance |
ICSA Labs PCI Data Security Standard Report (pdf 56kb)
Exclusive Product Capability Assurance Report by ICSA Labs for Sourcefire. The report provides independent testing validation of Sourcefire products satisfying the Payment Card Industry (PCI) and Data Security Standard (DSS) compliance. |
Sourcefire NERC Compliance Factsheet (pdf 168kb)
This two-page factsheet addresses the North American Electric Reliability Corporation (NERC) reliability requirements for the protection of critical infrastructure associated with the electric power industry, and how the Sourcefire 3D System can help customers meet those requirements. |
Sourcefire FISMA Compliance Factsheet (pdf 180kb)
This two-page factsheet addresses the requirements to protect federal information and information systems supporting secure federal information, and how the Sourcefire 3D System can help customers meet many of those requirements. |
Sourcefire HIPAA Compliance Factsheet (pdf 176kb)
This two-page factsheet addresses the safeguard requirements to protect the Protected Health Information (ePHI) of the healthcare industry and how the Sourcefire 3D System can help customers meet many of those requirements. |
Sourcefire PCI Compliance Factsheet (pdf 216kb)
This two-page factsheet addresses the 12 requirements of the PCI Data Security Standard and how the Sourcefire 3D System can help customers meet many of those requirements. |
Sourcefire Sarbanes-Oxley (SOX) Compliance Factsheet (pdf 176kb)
This two-page factsheet provides an overview of the Sarbanes-Oxley Act of 2002 (SOX) and how IT security is a central requirement of SOX. Specifically, this Factsheet shows how the Sourcefire 3D System can help customers comply with Sections 302, 404, and 409 of SOX. |
|
| Services |
Sourcefire Customer Support Factsheet (pdf 452kb)
This four-page factsheet tells the reader how to work with Sourcefire Customer Support, the differences in annual support plans, the importance of the Sourcefire Vulnerability Team rules, and the importance of the Sourcefire Success Pack. |
Sourcefire Success Pack (pdf 384kb)
This two-page factsheet shows how the Sourcefire Success Pack can ensure that a new customer has the best possible implementation experience. Through the Sourcefire Success Pack, customers get help with installation, tuning, policy formation, and compliance and report development. |
| Support Program Terms & Conditions | Support Program Process |
|
| Case Studies |
Sourcefire Customer Case Study - Weill Cornell Medical College (pdf)
An inability to see deep inside its network to determine security weaknesses and other potential concerns prompted Weill Cornell Medical College to seek an intrusion detection system. The SNORT rules community helped to put Sourcefire at the top of the pile, but it was the RNA (Real-time Network Awareness) option, which provides even greater insight and reduces false positives, that closed the deal. |
IANS Working Knowledge Series Case Study - ULLICO (pdf)
Getting Complete, Real-time Network Visibility with Sourcefire. Based on a network assessment, Union Labor Life Insurance Company (ULLICO), found it had inadequate visibility into its network traffic—both inbound and outbound, which was resolved using Sourcefire RNA. |
IANS Working Knowledge Series Case Study - LA Times (pdf)
Implementing a "Smart IPS". The LA Times faced many challenges securing its internal network and complying with PCI. The solution was a "smarter IPS" which was Sourcefire RNA. |
Sourcefire Customer Case Study - GraceKennedy (pdf)
GraceKennedy is one of the Caribbean's largest and most dynamic corporate entities and was looking for increased visibility into its diverse network. They found a solution that met all their needs and offered great tech support, as well as a component that could establish a network activity baseline and another that included a top vulnerability scanner for the same price as other solutions they tried. |
Sourcefire Customer Case Study - AutoTrader.com (pdf)
AutoTrader.com is widely regarded as the Internet's leading source for auto classifieds, and when they needed insight into user identity to further their security efforts, they added Sourcefire RUA. |
Sourcefire Reprint - SANS WhatWorks (TransUnion) (pdf reprint)
TransUnion is one of the three credit reporting companies and a global leader in financial information management. This case study explores how TransUnion relies on Sourecfire to streamline sensor, global compliance and log management. |
Sourcefire Reprint - SANS WhatWorks (XanGo) (pdf reprint)
XanGo, LLC is a recognized category creator as the first company to market a premium mangosteen beverage, XanGo® Juice, to consumers worldwide. To come up from scratch on PCI compliance, XanGo needed a reporting tool that would show auditors a consistent history of logs. In addition, the new senior network engineer knew he wanted IPS capabilities for a planned expansion. The solution he found met those requirements and other features, like RNA's passive scanning, allowed him to get a solid baseline on network segment activity. |
IANS Case Study - Federal Home Loan Bank of New York (pdf 120kb)
The FHLB of NY had a homegrown IDS solution to help with its internal security policies. They were using an outside developer to maintain the application. As their needs grew, they determined they needed to either build a new IDS from scratch on new hardware or purchase new appliances and software. They purchased Sourcefire because buying turned out to be cheaper than building for them, compliance auditors knew Sourcefire and asked fewer questions, and the Snort community is extremely large and responsive. |
IANS Case Study - RightNow (pdf 108kb)
RightNow (Nasdaq: RNOW), a provider of high-impact marketing and sales technology solutions and services, was a satisfied Snort user but knew they needed to look at commercial network security solutions as they needed to scale a lot more. RightNow went through a three-month investigation period and tested and evaluated six leading IPS products—Cisco, Top Layer, Demarc, Tipping Point, Reflex, and Sourcefire. Reference checks became an extremely important differentiator for RightNow. Read why they chose Sourcefire. |
Sourcefire Zotob Case Study (pdf 152kb)
The Zotob worm was a clear example of the consistently shrinking window of time between the announcement of a new vulnerability and the subsequent emergence of a threat intended to exploit the associated weakness. Zotob also demonstrated that first-generation intrusion prevention sensors are not always sufficient. This case study shows what RNA can do against these types of threats by identifying vulnerable hosts and abnormal activity as well as characterizing the new attacks. The case study also shows the unique and responsive capabilities that Sourcefire brings together through the Sourcefire Vulnerability Research Team (VRT) and the Snort community. |
Sourcefire Reprint - SANS WhatWorks (FXall) (pdf reprint 423kb)
FXall, the leading provider of automated trading and workflow solutions for foreign exchange and treasury products, handles an average daily volume in excess of $40 billion and needed a better IDS solution to meet its reporting requirements for SAS 70 and ensure effective and efficient network security. They started with a “toe in the water” purchasing approach and were very impressed with RNA—so they purchased more to expand their coverage. Read how FXall plans to use Sourcefire in the future. |
Sourcefire Reprint - SANS WhatWorks (Retail Decisions) (pdf reprint 256kb)
Retail Decisions is a payment card issuer and a world leader in card fraud prevention and payment processing. They work with blue-chip clients including Wal-Mart, Texaco, Travelocity, and Macy’s. They wanted an IPS that would meet their PCI Data Security Standard requirements and be highly tunable to monitor their diverse traffic created by many custom applications. They also wanted a network security system that would reduce the number of false positives they were encountering. See how RNA met their needs and did a lot more for them. |
Sourcefire Reprint - SANS WhatWorks (Unisys) (pdf reprint 112kb)
Unisys is a worldwide technology services and solutions company. They have a strong Managed Security Services (MSS) practice and operate three primary Security Operation Centers (SOC), along with a dedicated Federal SOC. They use a variety of Security Event Management (SEM) tools to manage up to 100 million events a day—with about 1,000 being high alerts. However, 1,000 high alerts a day still create a tremendous amount of work. They needed a technology that would allow them to reduce the total number of false positives. RNA, with its passive discovery capabilities, allowed Unisys to scan around the clock and better rate the alarm level of an event—making their overall SEM system more effective. Read the other reasons Unisys uses Sourcefire. |
Sourcefire Reprint - SANS WhatWorks (State Agency) (pdf reprint 196kb)
This state agency did not have any intrusion detection or prevention system in place. Needless to say, they were at high risk for unknown and undetected attacks. They also were not doing well in audits because they could not show ongoing network security monitoring. Two factors really steered this agency to buy Sourcefire: their past experience with open source Snort and the capabilities of RNA. Other reasons why they chose the Sourcefire 3D System is because it: can be initially used as an IDS and later be turned on as an IPS, does not slow down the network, and helps enforce policy compliance. Read how this state agency is now staying ahead of attacks. |
Sourcefire Reprint - SANS WhatWorks (BBCS/TIB) (pdf reprint 316kb)
BankersBank Card Services provides the tools and support necessary for banks to build and maintain profitable credit card issuing and acquiring portfolios. They loved open source Snort but as their network security coverage requirements tripled, they needed a commercial solution that would give them the kind of reporting they needed for management and PCI compliance. With the Sourcefire 3D System, BBCS/TIB was able to monitor all of their network segments and manage them all from a single Sourcefire Defense Center . Read why BBCS/TIB believes the Snort-based analysis engine in the Sourcefire 3D System is “just better than the others.” |
Sourcefire Reprint - SANS WhatWorks (AutoTrader.com) (pdf reprint 316kb)
AutoTrader.com is the Internet’s leading auto classifieds marketplace and consumer information website—attracting more than nine million unique visitors every month. They have been using open source Snort, but even after customization, it was constantly flooded with false positive events. The key piece of information that was missing was whether the targets or the attacks were vulnerable. AutoTrader.com needed a way to connect the attack with vulnerabilities. The continuous, passive network discovery capabilities of RNA and the event correlation capabilities of the Sourcefire Defense Center now enable AutoTrader.com to marry the vulnerability status of the server and application to an event and target the ones that matter. AutoTrader.com now has context for its events and can take the right action to stop or prevent attacks. Learn how AutoTrader.com is using Sourcefire to watch and interpret all network traffic and get up-to-the minute information on what is and isn’t running on the network. |
Sourcefire Reprint - SANS WhatWorks (Sisters of Charity Providence Hospitals) (pdf reprint 244kb)
A while back, Sisters of Charity Providence Hospitals failed to install some patches and got wiped out by Blaster. Their network was down for three days. As the network security needs of the organization grew, they wanted a commercial network security product to protect their network and help meet HIPAA compliance. They looked at Tipping Point, but it was too expensive for them. They had used Snort in the past and were very interested in the commercial version of the product that provided support. One morning after they had installed the Sourcefire products, they noticed that the network was very slow. Sourcefire showed them which subnet was generating the attack traffic. That subnet was one that was run by an affiliate office. The attack came from the other company’s network. By 9:00 a.m, management was shown documented proof of the source of the attack. Read how Sisters of Charity is now testing the IPS mode and says that “it blocks chat really well and we can see when attackers try to knock on the door.” |
|
| Reprints/Other |
Enterprise Strategy Group - Information Security Brief (pdf reprint 115kb)
In this two-page brief, Enterprise Strategy Group (ESG) discusses why Sourcefire has what it takes to be successful as an adaptive network security solution. Specifically, this brief covers RNA and its ability to detect malicious traffic on the network, identify new resources, and monitor network activity. |
Federal Computer Week - Intrusion Detection on Steroids (pdf reprint 252kb)
In this article, Federal Computer Week reviews the Sourcefire 3D System and gives it five stars for its features, performance, and price. |
Frost & Sullivan Company of the Year 2005 - (pdf 106kb)
This document describes the evaluation criteria that Frost & Sullivan used to select a company. This criteria includes: market potential; proof of success executing a restructuring, marketing strategy, and revenue growth; new market penetration; technological innovation and leadership; and more. |
SC Magazine Group Test: Intrusion Prevention 2005 - (pdf 460kb)
In this article, SC Magazine reviews 12 leading IPS appliances and gives Sourcefire its Best Buy award. |
|
3D System Demo