DPI has now become a “must have” technology embedded both in interception probes and in monitoring centers. These are tough environments, which means that the DPI software inside ISS systems must also be tough. Qosmos experience shows us that to reach the required levels of performance, a DPI engine must have the following 3 built-in capabilities:
• Resilience, so it can function even under adverse external conditions (e.g. maliciously forged packets or flows)
• Robustness, so it can perform well during difficult situations (e.g. SYN flood attacks, incomplete traffic)
• Reliability, so it can decode traffic even under unusual circumstances (e.g. tunnels, obfuscated traffic, non-standard protocol behavior)
Without these so-called “Triple R” capabilities, a DPI engine could be brought down, be circumvented, or may not function at all under certain circumstances. And the challenge addressed by Triple R goes beyond cyber security: it is about hardening and quality assurance of DPI software as a key component of Intelligence Support Systems. It is about having a “battle-proof” DPI software which can operate in hostile environments and also handle abnormal traffic situations. It is close to having a “military-grade” DPI engine.
Think of a military 4WD Humvee vs. a regular family sedan car: mission-critical environments such as Lawful Intercept and Cyber Defense must ensure that their DPI technology is “Humvee-like” across all solutions, otherwise they could malfunction under extreme conditions (which do occur on a regular basis). This can lead to serious national security issues. Imagine adversaries taking out interception systems with DDOS attacks, imagine terrorists using stealthy methods to become invisible to interception systems, imagine a DPI engine inside a cyber defense solution not being able to decode traffic encapsulated in tunnels, etc. etc.
Under tough conditions, would you rather have a sedan car or a Humvee?
Thibaut Bechetoille, Qosmos CEO
Three questions to Pete Moore, of Moore Performance Systems (MPS)
1. Who is MPS?
MPS is a software development and consulting firm based in San
Jose, California. We specialize in high-performance software and
L2-L7 protocol processing on multi-core platforms leveraging
hardware acceleration features. MPS is staffed with experienced
Silicon Valley veteran software engineers, many with more than 25
years of experience. We are a Qosmos Expert Developer (QED).
2. Could you give us some examples of your work?
Several of our clients are Qosmos customers who use MPS as an
extension of their in-house development teams: we provide
best-in-class Qosmos development and integration expertise, which
translates into faster time-to-market and quality assurance for new
Qosmos-based solutions. For confidentiality reasons, I cannot name
our clients, but I can say that we work for Qosmos customers both in
the US and in EMEA. Current projects include software development
and optimization on NetLogic (XLR) and Tilera TilePro.
3. Why did you choose to work with Qosmos?
Qosmos is the only pure-play vendor of embedded DPI & Network
Intelligence technology. Their ixEngine SDK comes with a strong
reputation and has the longest track record on the market. From the
beginning, I was impressed with Qosmos technology: the advanced
traffic parsing capabilities, the number of protocols supported, and
the ability to handle difficult traffic situations. Qosmos is also
the only supplier who supports all leading multi-core architectures:
Netlogic, Freescale, Cavium, Tilera and Intel. This is exactly in
line with our strategy and core expertise.
More info:
www.moore-performance.com
or
pete@moore-performance.com
50 Gbps of Network Intelligence in a 2U Linux Server!
Tilera®Corporation, the leader in manycore general purpose microprocessors, and Qosmos have announced a collaboration that delivers the highest performance network intelligence Linux server solution, at a whopping 50 gigabits per-second.
Increased use of cloud-based Software as a Service (SaaS) applications, proliferation of mobile devices, cyber attacks and terrorism make network security more important than ever. However, monitoring and controlling the huge quantities of data travelling over networks requires enormous processing capacity and high performance solutions that, until now, have been expensive to acquire and complex to install.
Tilera and Qosmos propose a simple, cost-effective solution in which a Qosmos technology software stack runs on the Tilera-based S2Q server, available from Quanta Computers. The server combines up to eight Tilera TilePro64™ processors into a 2U form factor, enabling dramatically increased performance in a standard Linux environment.
>> Read More
