Network Flight Recorder
Programmable intrusion detection and network traffic analysis engine.
| Date | Investors | Amount | Round |
|---|---|---|---|
$6.4m | Growth Equity VC | ||
| Total Funding | 000k | ||
Network Flight Recorder (NFR) was a cybersecurity company that developed an intrusion detection system (IDS) of the same name. Founded in 1996 by computer and network security innovator Marcus J. Ranum, the company operated with him as CEO for three years before he transitioned to the CTO role. Ranum was a key figure in the development of early firewall technology, including the first commercial bastion host firewall, the DEC SEAL, and the TIS Internet Firewall Toolkit.
The company's core product, also called Network Flight Recorder, was designed as a flexible and extensible tool for both security and network management. It functioned as a programmable traffic analysis and intrusion detection engine that could be updated instantly when new cyberattacks were discovered. Unlike other systems that required vendor-supplied updates, NFR allowed users to write their own custom rules using a proprietary scripting language called N-Code. This language, derived from an interpreted language originally used in a computer game, enabled users to tailor the system to their specific network configurations and security needs. The NFR system architecture was component-based, separating data gathering from the query interface to minimize performance impact. It could be deployed in either a standalone configuration or a distributed model with multiple remote sensors reporting to a central station.
In 2003, the company was renamed NFR Security, Inc., and the product line was rebranded as Sentivist Intelligent Intrusion Manager. The technology focused on providing deep analysis of network traffic, starting from the packet level, and combined stateful packet inspection with protocol anomaly detection. It offered a two-layer detection mechanism: a high-speed lower layer for data capture and reassembly, and an upper layer featuring the N-Code language for rapid signature development.
Keywords: intrusion detection system, network security, traffic analysis, Marcus J. Ranum, N-Code, network monitoring, packet capture, cybersecurity, protocol anomaly detection, stateful packet inspection, firewall technology, threat detection, network management, security appliance, scriptable detection