Sourcefire RNA™ (Real-time Network Awareness) provides 24x7, passive network intelligence, storing a real-time inventory of all operating systems, services, applications, protocols, and potential vulnerabilities that exist on the network. RNA collects this intelligence in a completely passive manner and seamlessly integrates the intelligence within the Sourcefire 3D® System. Combine RNA’s real-time network visibility with Sourcefire RUA™ (Real-time User Awareness), a technology that links user identity to security and compliance events, and organizations have enterprise-wide intelligence on their dynamic networks and users.
Although passive discovery is RNA’s primary means of gathering network intelligence, RNA’s host database can be augmented with information gathered by active discovery tools. For example, Sourcefire’s Host Input API enables the 3D System to obtain additional endpoint asset and vulnerability intelligence from a variety of third-party tools, and it integrates the active scan results into the RNA host database to increase the accuracy of RNA’s impact analysis.
Once RNA has established a network inventory baseline, its powerful Policy and Response (P&R) engine can notify Information Security or Network Operations when a new host appears on the network and/or when an existing host has changed its approved configuration. In addition, Sourcefire’s Remediation API enables the 3D System to direct external devices and systems to help enforce policies and/or take corrective actions.
With Sourcefire RNA’s real-time network intelligence, discover things running on your network that you never dreamed possible and know exactly what is happening on your network.