Federal Civilian Agencies
Security initiatives and compliance are now the watchword of all civilian agencies. With the emergence of the Trusted Internet Connections and Einstein Program (from recommendations within Homeland Security agencies), privacy and data integrity have become of primary importance to all aspects of cyber management including Issues such as Privacy Impact Assessment (PIA) and centralized management.
On November 20, 2007, "in accordance with" an Office of Management and Budget (OMB) memo, Einstein version 2 initiative is now required for all federal-civilian agencies.
Endace products form the foundation for all currently installed Einstein Program installations, delivering monitoring solutions that include:
- TCP/IP/ICMP type and code identification
- Packet capture and length analysis for forensics analysis
- Protocol identification
- Sensor identification and connection status
- Source and destination IP address filtering
- Source and destination port filtering
- TCP flag information
- High accuracy (micro second) Timestamp and duration information
- Threat detection via flow monitoring
Related Pages
Learn More
Applied Watch
Centralised management and monitoring of open source security applications, including SNORT® with Barnyard, LaBrea Tarpit, ClamAV, Syslog-NG, Nessus, Nagios & OSSEC HIDS - with Endace Applied Watch.
Open Source Applications
For a comprehensive list of open source applications that use Endace as the common infrastructure platform see here
