Features of Threat Vault and AutoFocus are integrated
into the firewall to provide visibility into the nature of the threats
the firewall detects and to give a more complete picture of how
an artifact fits into your organization’s network traffic (an artifact
is property, activity, or behavior associated with a file, email
link, or session). You can get immediate, contextual information about
a threat or to seamlessly shift your threat investigation from the
firewall to the Threat Vault and AutoFocus.
Additionally, you can use Threat Signature Categories—which classify
types of threat events—to narrow your view into a certain type of
threat activity or to build custom reports.