Movatterモバイル変換

[0]ホーム
URL:

Jump to content
WikipediaThe Free Encyclopedia
Search

Sourcefire

From Wikipedia, the free encyclopedia
American computer security company

Sourcefire
Sourcefire logo
Company typeSubsidiary
IndustryNetwork security;intrusion detection,intrusion prevention system and anti-malware
Founded2001
FounderMartin Roesch
FateAcquired
HeadquartersColumbia, Maryland
Key people
John Becker (CEO) (at the sale of the company),Martin Roesch (Founder and CTO)
ProductsSourcefire Firepower network security appliances
Revenue$223.1M (FY12)
Number of employees
560 (3Q12)
ParentCisco Systems
Websitecisco.com

Sourcefire, Inc was a technology company that developednetwork security hardware and software. The company's Firepower network securityappliances were based onSnort, anopen-sourceintrusion detection system (IDS). Sourcefire was acquired by Cisco for $2.7 billion in July 2013.[1][2]

Background

[edit]

Sourcefire was founded in 2001 byMartin Roesch, the creator ofSnort. The company created a commercial version of the Snort software, the Sourcefire 3D System, which evolved into the company's Firepower line of network security products. The company's headquarters was inColumbia, Maryland in the United States, with offices abroad.

Financial

[edit]

The company's initial growth was funded through four separate rounds of financing raising a total of $56.5 million from venture investors such asSierra Ventures,New Enterprise Associates,Sequoia Capital, Core Capital Partners, Inflection Point Ventures, Meritech Capital Partners, and Cross Creek Capital, L.P.[a]

In 2005,Check Point Software attempted to acquire Sourcefire for $225 million,[3] but later withdrew its offer after it became clear US authorities would attempt to block the acquisition.[4] The company completed aninitial public offering in March 2007, raising $86.3 million.[5][b] In August of the same year, Sourcefire acquiredClam AntiVirus.[6] Sourcefire rejected an offer of $187 million in May 2008 from security appliance vendorBarracuda Networks,[7] who had offered to pay US$7.50 per share, amounting to a 13% premium of their then-current stock price.[8] Sourcefire announced its acquisition of the cloud-based antivirus firmImmunet in January 2011.[9][10]

Revenue for the fourth quarter of 2012 was $67.4 million compared to $53.2 million in the fourth quarter of 2011, an increase of 27%.[11] Revenue for the year ending December 31, 2012 was $223.1 million compared to $165.6 million for 2011, an increase of 35%. International revenues were $74.4 million, up 77% over 2011. As of December 31, 2012, the company's cash, cash equivalents, and investments totaled $204.0 million.[12]

Sourcefire received SC Magazine's 2009 "Reader Trust" award for best intrusion detection andintrusion prevention system (IDS/IPS) for Snort[13] and Network World's "2009 Best of Tests" award for the Sourcefire 3D System.[14]

On July 23, 2013,Cisco Systems announced a definitive agreement to acquire Sourcefire for $2.7 billion.[1][15]

Products

[edit]

Firepower

[edit]

The Sourcefire Firepower line of appliances are designed to form part of a layered security defense. They can be deployed as:

  • Next-GenerationIntrusion Prevention System (NGIPS), with network visibility into hosts, operating systems, applications, services, protocols, users, content, network behavior and network attacks and malware.
  • Next-GenerationFirewall (NGFW) with NGIPS, incorporating access and application control, threat prevention and firewall capabilities
  • Next-Generation Intrusion Prevention System with integrated:
  • Application control
  • Malware protection
  • URL filtering
  • Advanced Malware Protection Appliance for dedicated inline network protection against advanced malware.

Advanced Malware Protection

[edit]

Sourcefire Advanced Malware Protection (AMP) offers malware analysis and protection for networks and endpoints usingbig data analytics to discover, understand and block advanced malware outbreaks, advanced persistent threats (APTs) and targeted attacks. AMP enables malware detection and blocking while provisioning continuous analysis and retrospective alerting, using Sourcefire's cloud security intelligence[clarification needed].

Advanced Malware Protection can be deployed inline via aproduct key on NGIPS, dedicated AMP Firepower appliance or on endpoints, virtual and mobile devices with FireAMP.[16]

Snort

[edit]
Main article:Snort (software)

Snort is an open source networkintrusion prevention and detection system utilizing a rule-driven language, which combines signature, protocol and anomaly based inspection methods. Developed in tandem with the Snort open source community, its developers claim it is the most widely deployed intrusion detection and prevention technology worldwide.[17]

Immunet

[edit]
Main article:Immunet

Immunet uses the cloudvirus definitions along with virus definitions from Clam AntiVirus which is an open source (GPL) anti-virus toolkit primarily used on UNIX operating systems designed for e-mail scanning one-mail gateways. It provides a number of utilities including amulti-threadeddaemon, acommand-line interface scanner and tool for automatic database updates. The core of the package is an anti-virus engine available in a form of ashared library.[18] Immunet was provided in two versions, Free and Plus.[19]

As of June 10, 2014, Immunet Plus is no longer available, replaced with Immunet Free, supported by Cisco.[8]

Sourcefire Vulnerability Research Team

[edit]

The Sourcefire Vulnerability Research Team (VRT) was a group of network security engineers which discovered and assessed trends in hacking activities, intrusion attempts, and vulnerabilities.[20] Members of the Sourcefire VRT include theClamAV team as well as authors of several standard security reference books[21][22][23] and articles. The Sourcefire VRT is also supported by the resources of the open sourceSnort[24] andClamAV[25] communities.

The group focuses on developing vulnerability-based rules to protect against emerging exploits for Sourcefire customers and Snort users. The VRT has provided zero-day protection for outbreaks ofmalware, includingConficker,[26]Netsky,Nachi,[27]Blaster,Sasser,Zotob,[26]Nachi[28] among others. The VRT also delivers rules that provide same day protection forMicrosoft Tuesday vulnerabilities, develops the officialSnort rules used by the Sourcefire 3D System, develops and maintains the official rule set of Snort.org, and maintains shared object rules that are distributed for various platforms in binary format.[29][20]

Following the Cisco acquisition[30] of Sourcefire in 2013, the VRT combined with Cisco's TRAC and SecApps (Security Applications) group to form Cisco Talos.[31] "Talos" was officially coined in usage in 2014, followed by its trademark, and was announced at Blackhat that year.

See also

[edit]

Notes

[edit]
  1. ^A venture fund whose general partner is a wholly owned subsidiary of Wasatch Advisors, Inc.
  2. ^The sole book-running manager of the offering wasMorgan Stanley & Co. Incorporated.Lehman Brothers Inc. acted as co-lead manager andUBS Securities LLC andJefferies Group LLC served as co-managers.

References

[edit]
  1. ^ab"Cisco Completes Acquisition of Sourcefire".Cisco Systems. October 7, 2013. RetrievedOctober 7, 2013.
  2. ^"Cisco to Buy Sourcefire, a Cybersecurity Company, for $2.7 Billion".The New York Times. July 23, 2013. RetrievedJuly 23, 2013.
  3. ^"Check Point and Sourcefire to Explore Alternative Business Relationship".Check Point. March 23, 2006. Archived fromthe original on March 26, 2014. RetrievedOctober 12, 2008.
  4. ^"Check Point calls off Sourcefire buy".Symantec. March 24, 2006. RetrievedOctober 13, 2008.
  5. ^"Top 10 technology IPOs of 2007".TechTarget. December 31, 2007. RetrievedSeptember 24, 2016.
  6. ^"Sourcefire acquires ClamAV".SecurityFocus. August 17, 2007. Archived fromthe original on November 11, 2012. RetrievedOctober 28, 2008.
  7. ^"Barracuda hungry for OSS security developer Sourcefire".Ars Technica. May 30, 2008. RetrievedAugust 20, 2009.
  8. ^"Sourcefire says no to Barracuda's takeover bid".InfoWorld. May 30, 2008. RetrievedAugust 20, 2009.
  9. ^Friedrichs, Oliver."Immunet Acquired by Sourcefire". Immunet.Archived from the original on January 10, 2011. RetrievedApril 10, 2011.
  10. ^"Sourcefire Announces Acquisition of Immunet". Sourcefire.Business Wire. January 5, 2011. Archived fromthe original on April 13, 2011. RetrievedApril 10, 2011.
  11. ^"Sourcefire Security Blazes Up on Q4 After VMware Drop".Investor's Business Daily. February 22, 2013. RetrievedSeptember 24, 2016.
  12. ^"Sourcefire Announces Record Revenue for Fourth Quarter & Full Year 2012".Yahoo! Finance. Marketwire. February 21, 2013. RetrievedFebruary 21, 2013.
  13. ^"Best IDS/IPS solution".SC Magazine.Haymarket Media Group. April 22, 2009. Archived fromthe original on November 27, 2011. RetrievedOctober 29, 2009.
  14. ^"2009 Best of the Tests winners".Network World. February 24, 2009. Archived fromthe original on September 27, 2016. RetrievedOctober 29, 2009.
  15. ^"Cisco Agrees to Buy Sourcefire in $2.7 Billion Deal".Bloomberg News. July 23, 2013. RetrievedSeptember 25, 2016.
  16. ^"FireAMP Fights Malware with Big Data Analytics".PC World. January 23, 2012. RetrievedJanuary 23, 2012.
  17. ^"Snort Website". RetrievedOctober 28, 2008.
  18. ^"ClamAV Website". Archived fromthe original on January 10, 2010. RetrievedOctober 28, 2008.
  19. ^"Immunet Website". RetrievedMay 23, 2015.
  20. ^ab"Inside Sourcefire's Vulnerability Research Team".CSO. May 12, 2010. RetrievedJuly 6, 2010.
  21. ^"Snort 2.1 Intrusion Detection, Second Edition".Amazon. April 30, 2004. RetrievedDecember 11, 2009.
  22. ^"Snort2.0 Intrusion Detection (Paperback)".Amazon. 2003. RetrievedDecember 11, 2009.
  23. ^Trost, Ryan (July 3, 2009).Practical Intrusion Analysis: Prevention and Detection for the Twenty-First Century. Addison-Wesley.ISBN 978-0321591807.
  24. ^"Sourcefire VRT". RetrievedJuly 6, 2010.
  25. ^"FAQ – Malware Statistics". RetrievedJuly 6, 2010.
  26. ^ab"Dark Reading Article". January 30, 2009. Archived fromthe original on January 20, 2013. RetrievedDecember 11, 2009.
  27. ^"The Free Library Article". 2007. Archived fromthe original on October 20, 2012. RetrievedDecember 11, 2009.
  28. ^"Encyclopedia.com Article". August 17, 2005. RetrievedDecember 11, 2009.
  29. ^"Microsoft Security Response Center Partners".Microsoft. RetrievedJuly 6, 2010.
  30. ^"Cisco Completes Acquisition of Sourcefire".cisco.com. October 7, 2013. RetrievedJune 18, 2014.
  31. ^"Cisco Talos". January 19, 2018.

External links

[edit]
Companies
Products
Desktop,
server
Mobile,
tablet
Related
Retrieved from "https://en.wikipedia.org/w/index.php?title=Sourcefire&oldid=1282839402"
Categories:
Hidden categories:
[8]ページ先頭
©2009-2026 Movatter.jp