The inline IPS/IDS system of OSIgate is based on Suricata/Snort and WebCache/Netmap to enhance performance and minimize CPU utilization. This Deep Packet Inspection system is very powerful and can be used to mitigate security threats at wire speed.
R&D Report
1. IDS/IPS Performance and Throughput research. [ask]
2. Snort performance research. [ask]
3. IDS/IPS performance overhead research. [ask]
click to see more about Ransomware protection
Cisco Snort: The World’s Most Widely Deployed IDS/IPS Technology
Overview
Martin Roesch, the founder of Sourcefire and chief security architect at Cisco, created Snort® in 1998. Snort is an open-source, rule-based, intrusion detection and prevention system. It combines the benefits of signature-, protocol-, and anomaly-based inspection methods to deliver flexible protection from malware attacks. Snort gained notoriety for being able to accurately detect threats at high speeds. With nearly 4 million downloads and hundreds of thousands of registered users, Snort is the most widely deployed IPS technology in the world.
Benefits for OSIgate users
Cisco Snort’s open-source development methodology offers three main benefits:
● Rapid response: Protect your environment from emerging attacks quickly using Snort to customize and enforce your own security rules. Protect from threats you haven’t even seen through the Cisco® Talos Security Intelligence and Research Group (Talos). Talos writes Snort rules every hour of the day to combat new and evolving threats.
● Greater accuracy: Strengthen your security without doing a thing. The worldwide Snort community continually reviews, tests, and offers improvements to the Snort source code. Benefit from the collective knowledge of security teams around the world as they suggest changes.
● High adaptability: Employ the Snort system as a foundation for creating your own unique network security solutions. With ready access to source code and documentation, you can add your own functions to Snort.