SNORT uses 'many eyeballs' for free network intrusion detection

The Snort open source network intrusion detection and prevention system from Sourcefire is now integrated with Intel’s QuickAssist Pattern Matching Technology. This free traffic analysis tool will use the Intel technology to perform “deeper inspection” with higher throughput and lower latency.

For network administrators overseeing high-speed networks that need protection, one of the biggest concerns will be the potential for bottlenecking of the security layer if it is not capable of operating in real-time at high speeds. Sourcefire is aiming to address this issue with Snort.


Snort’s community website details is ethos as follows:

“The power and reach of Snort is due in large part to the influence and scope of the Snort user community. There are thousands of experienced programmers reviewing and testing the functionality of the Snort engine and rule sets. By leveraging the “many eyeballs” theory that was popularized by Eric Raymond and used to launch Linux to success in the operating systems market, people in the open source Snort community worldwide can detect and respond to bugs and other security threats more quickly and efficiently than in a ‘closed’ environment.”

Sourcefire says that the Intel QuickAssist Technology Pattern Matching service is perfectly suited for deep packet inspection applications such as intrusion detection and prevention systems.