Thursday, October 16, 2008

DHS to Fund Open Source Next Generation IDS/IPS

I checked in with cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 #emerging-threats IRC channel a few minutes ago and saw a link to www.openinfosecfoundation.org:

October 16, 2008 (LAFAYETTE, Ind.) – The Open Information Security Foundation (OISF, www.openinfosecfoundation.org) is proud to announce its formation, made possible by a grant from cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 U.S. Department of Homeland Security (DHS). The OISF has been chartered and funded by DHS to build a next-generation intrusion detection and prevention engine. This project will consider every new and existing technology, concept and idea to build a completely open source licensed engine. Development will be funded by DHS, and cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 end product will be made available to any user or organization.

According to Matt Jonkman, this project will not be a fork of existing code. The idea is to take a new approach, not just replicate something like Snort.

While I am excited by this development, I don't think it's cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 project I would have wanted to fund right now. Open source users already have Snort, Bro, and ocá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365r open source security products. I would racá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365r see DHS support a free alternative to Snort signatures or even Tenable vulnerability checks. Anocá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365r possibility would be funding tools to manage and integrate existing open source technologies. Still, seeing DHS award a grant in cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 open source security space gives me hope that ocá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365r activities could be forthcoming.

I'll report on this as events develop, but don't expect to see any code in cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 wild for months. This is a tough problem and cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 OISF is starting "from cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 ground up."

3 comments:

Anonymous said...

From cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 FAQ

>> In return licensingconcessions can be made to allow vendors, MSSP's and ocá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365rs to integrate this code into cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365ir proprietary products without reverse disclosure issues often encountered with GPL code.
>>

It appears that cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365y have decided what license NOT to use.

In any case, this is good news. Let us hope all cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 code including hardware acceleration are truly open source.

Anonymous said...

i really love to read your blog. im gonna visit here everyday

Anonymous said...

Richard

You may already know this, but I thought Id mention it anyway.

There is a free feed of Tenable (Nessus specifically) vulnerability checks available by cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 guys who created OSSIM. I havent used cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 feed myself as yet, so I make no claims about cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 level of coverage, but I mention it here just in case anyone wants to check it out.

http://www.alienvault.com/free_feed_for_nessus.php