Sourcefire acquisition under government scrutiny

By SearchSecurity.com Staff 03 Mar 2006 | SearchSecurity.com

Security Wire Daily News Digg This!     StumbleUpon     Del.icio.us

The Snort user community may get its wish after all.

Check Point Software Technologies Ltd.'s pending $225 million acquisition of Sourcefire Inc., which offers commercial support of the popular Snort open source IDS tool, is under intense scrutiny by a government review panel amid concerns that foreign ownership of Snort would threaten U.S. national security.

Check Point, located in Ramat Gan, Israel, hopes to acquire Columbia, Md.-based Sourcefire to augment its intrusion detection and intrusion prevention systems (IPS). But according to a report from the Associated Press, the FBI and the Pentagon expressed strong reservations about the deal because Snort is used to safeguard classified U.S. military and intelligence data.

The transaction is now being reviewed by the Committee on Foreign Investments in the United States (CFIUS), the same Treasury Department panel involved with the controversial review and approval of United Arab Emirates-based Dubai Ports World's $6.85 billion acquisition of Britain's P&O, which operates a half dozen major U.S. shipping ports.

In an interview with the Washington Post, Sourcefire CEO Wayne Jackson said he was "stunned" that his 140-person company could be at the center of an international controversy, but added that he remains "confident that measures can be put in place to mitigate whatever risks the federal government believes might exist."

Members of the Snort user community have been wary of the acquisition all along, but for different reasons. Some fear Check Point would allow Snort to languish, as some feel it has done since it acquired the popular free ZoneAlarm desktop firewall application as part of its $205 million purchase of Zone Labs in 2003. Others fear Check Point would seek to further monetize Snort by no longer allowing it to be an open source product.

But in a recent interview with SearchSecurity.com, Sourcefire CTO Martin Roesch said those fears are unfounded.

"There's a lot of skepticism from the Snort users right now because they're in wait-and-see mode, so we need to prove to them that we mean it when we say Snort's going to get a lot better," Roesch said. "We're not going to try to close it or anything like that. Once they see how much benefiting, they're going to be really happy."

According to the AP, Check Point was notified of the inquiry on Feb. 6, but it is unclear when the ongoing, 45-day CFIUS review of the acquisition will be completed. One analyst estimated that Sourcefire earned about 10% of its $35 million in 2005 revenue by guarding classified U.S. computers.

Tags: Information Security Laws, Investigations and Ethics,  Security Industry Market Trends, Predictions and Forecasts,  Network Intrusion Detection (IDS),  Network Intrusion Prevention (IPS),  VIEW ALL TAGS

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT Information Security Laws, Investigations and Ethics Cybersecurity czar candidate questions clout of new position DHS fills National Cybersecurity Center post FTC shutters rogue ISP for hosting malicious content, botnets Experts optimistic of Obama cybersecurity plan WH cybersecurity plan needs private sector guidance Obama announces creation of cybersecurity coordinator position Cybersecurity Act of 2009: Power grab, or necessary step? Face-off: Who should be in charge of cybersecurity? Feds should get private sector advice on cybersecurity Federal efforts to secure cyberinfrastrucure Security Industry Market Trends, Predictions and Forecasts Cybersecurity czar candidate questions clout of new position Gartner sees better days ahead for security budgets Sophos CEO on Symantec, McAfee after Utimaco acquisition WH cybersecurity plan needs private sector guidance Obama announces creation of cybersecurity coordinator position Security budgets take hit in media, tech industry, survey finds Cybersecurity Act of 2009: Power grab, or necessary step? Opinion: Gartner gets NAC wrong, again Cloud computing security group releases report outlining trouble areas White House cybersecurity advisor calls for public-private cooperation Security Industry Market Trends, Predictions and Forecasts Research Network Intrusion Detection (IDS) SIMs tools and tactics for business intelligence IPS and IDS deployment strategies Know when you need IDS, IPS or both Trend Micro to acquire Third Brigade for virtualization, cloud security New product aims to control rogue applications that avoid firewalls How to perform a network forensic analysis and investigation What is the cause of an 'intrusion attempt' message? Host-based intrusion prevention addresses server, desktop security Intrusion detection vs. intrusion prevention Product review: AirDefense Enterprise 7.3 Network Intrusion Detection (IDS) Research

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary CALEA  (SearchSecurity.com) cyberstalking  (SearchSecurity.com) cypherpunk  (SearchSecurity.com) HSPD-7  (SearchSecurity.com) I-SPY Act  (SearchSecurity.com) Information Awareness Office  (SearchSecurity.com) intelligence community  (SearchSecurity.com) lawful interception  (SearchSecurity.com) lifestyle polygraph  (SearchSecurity.com) vulnerability disclosure  (SearchSecurity.com)

RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary