Security Testing and Evaluation Labs

Security Evaluation Laboratory (SEL)

Sourcefire, Inc.: Sourcefire 3D System Version 4.8

Sponsor:	Sourcefire, Inc.
Point of Contact:	Steve Kane Phone: (410)423-1969
Assurance Level:	EAL 2+ BRPP
Status:	In-Evaluation

The Sourcefire 3D System, consisting of Sourcefire Defense Centers and Sourcefire 3D Sensors, is an Intrusion Prevention System that combines open-source and proprietary technology. It is used to monitor incoming (and outgoing) network traffic, from either inside or outside a firewall. All packets on the monitored network are scanned, decoded, processed and compared against a set of rules to determine whether inappropriate traffic, such as system attacks, is being passed over the network. The system then notifies a designated TOE administrator of these attempts. The system generates these alerts when deviations of the expected network beavior are detected and when there is a match to a known attack pattern.

Back to SEL Main Page

Security Testing and Evaluation Labs
- Cryptographic Equipment Assessment Laboratory
- Security Evaluation Laboratory