Breach Security Partners with Sourcefire to Provide Complete Visibility of SSL Encrypted Traffic

Alliance enhances effectiveness of intrusion detection and prevention for customers

CARLSBAD, Calif., – July 13, 2005 – Breach Security, Inc. a pioneer of web application security solutions, today announced a partnership with Sourcefire®, Inc., the creators of Snort® and the world leader in intrusion prevention. This partnership combines Sourcefire’s innovative network discovery and intrusion management solutions with the BreachView SSL™ decryption appliance, giving customers the ability to continuously identify and monitor all assets and vulnerabilities on the network in real-time including traffic encrypted with SSL.

SSL enables secure communications between a client and a server, prohibiting visibility into the contents of the traffic by both hackers and security tools. While the use of SSL technology permits the safe transmission of sensitive information, hackers are able to use it to evade detection by network intrusion detection and prevention systems. BreachView SSL sits in front of the Sourcefire Intrusion Sensors decrypting SSL traffic for attack analysis. With the BreachView SSL appliance, customers can leverage the award-winning Snort® detection engine to analyze all inbound SSL encrypted traffic.

SSL has become one of the most flexible enablers of data communications privacy,” said Scott Crawford, Senior Analyst with Enterprise Management Associates. “Paradoxically, SSL can also hide threats that target some of the most high-value and most vulnerable enterprise assets: Web-delivered applications.” Crawford adds, “Visibility into SSL traffic thus becomes vital for today’s application-oriented enterprise, when it can be implemented in a way that preserves the security, privacy and compliance priorities for which SSL is deployed in the first place.”

According to Thomas Watson of Bayer Corporate Business Services, a Breach and Sourcefire customer, “SSL traffic has always been an inconspicuous spot on the network in regards to detecting malicious activity. It has become an increasing factor the past few years as traffic has grown, particularly with the impact of new regulatory requirements of federal and state privacy initiatives.”

“The partnership with Breach Security Inc., allows us to continue to provide our customers with the most effective, real-time network security available for today’s security challenges,” said John Czupak, Vice President of Business Development at Sourcefire, Inc. “BreachView SSL provides 100% visibility into SSL-encrypted data, enhancing the Sourcefire 3D System’s ability to identify and block attacks masked by SSL. We’re pleased to be working with Breach Security to provide our customers with the option to identify malicious code hidden within SSL encryption.”

“We’re especially pleased to partner with Sourcefire,” said Marc Shinbrood, CEO of Breach Security. “This relationship enables Breach to deliver its value enhancing SSL technology to Sourcefire customers, one of the most respected, installed, and used IPS products available today.” Shinbrood added, “The partnership uniquely positions Sourcefire and Breach to address the customer’s need for incorporating both secure communication of critical information as well as monitor and manage this information for potential threats within the encrypted traffic.”

About Sourcefire:

Sourcefire, Inc., the world leader in intrusion prevention, is transforming the way organizations manage and minimize network security risks with its 3D Approach – Discover, Determine, Defend – to securing real networks in real-time. The company’s ground-breaking network defense system unifies intrusion and vulnerability management technologies to provide customers with the most effective network security available. Founded in 2001 by the creator of Snort, Sourcefire is headquartered in Columbia, MD and has received numerous accolades including being named the Frost & Sullivan 2005 Network Security Infrastructure Protection Company of the Year. At work in leading Fortune 1000 and government agencies, the names Sourcefire and founder Martin Roesch have grown synonymous with innovation and intelligence in network security. For more information about Sourcefire, please visit www.sourcefire.com.
About Breach Security, Inc.

Breach Security, Inc. is a leading provider of next-generation web application security that protects corporate-critical information. Breach effectively protects web applications of commercial enterprises and government agencies alike against Internet hacking attacks and provides an effective solution for expanding security challenges such as identity theft, information leakage, and insecurely coded applications. Breach’s solutions are ideal for any organization’s regulatory compliance requirements for security.  Breach was founded in 2004 and is headquartered in Carlsbad, Calif. For more information visit: www.breach.com.

# # #


Breach Security, BreachGate WebDefend and BreachMarks are trademarks of Breach Security, Inc.  All other companies’ names and product names are trademarks of their respective organizations

Media Contacts:

Breach Security, Inc. U.S.

Dan Chmielewski, Principal
Madison Alexander PR, Inc.
dchm@madisonalexanderpr.com
(949) 231-2965