FREE EVALUATION
  1. Home
  2. >
  3. Security
  4. >
  5. Network Traffic Analysis

NETWORK TRAFFIC ANALYSIS WITH DPI SENSORS

WHERE ARE THREATS LURKING? YOUR NETWORK KNOWS.

Network Traffic Analysis (NTA) uses a combination of machine learning, advanced analytics and rule-based detection to continuously – and non-intrusively – analyze network traffic, flows, and connections. It uses this data to build (or refine) a baseline model of normal network behavior, enabling fully contextualized alerting when deviant patterns are detected. This means you can identify suspicious activities existing tools miss – in near real-time.

NTA is a particularly powerful tool for detecting and responding to malicious lateral (east-west) activity, though NTA also increases visibility into north-south perimeter breaches. And as NTA is based on raw telemetry data rather than log information, it provides a uniquely objective view of threat behavior on your network.

DPI: THE POWER BEHIND NTA

NTA solutions are powered by passive, non-intrusive deep packet inspection (DPI) technology that can profile and classify network traffic even if it is encrypted. Qosmos’ market-leading, high-throughput sensor (the DPI Probe) can be rapidly and cost-effectively deployed anytime, anywhere across a network to build full-feature NTA solutions that integrate smoothly into existing response management and forensic analysis systems.

GLOBAL NETWORK VISIBILITY

  • Gain real-time L2-to-L7 visibility over network traffic across mobile, cloud, on-premise equipment, IoT devices, applications and containers.
  • Achieve visibility into encrypted traffic with fine grained and contextualized metadata and statistics that can profile and classify data packets without decryption.

CRITICAL EFFICIENCY

  • Save valuable SOC staff time (and frustration) by excluding low- or no-value data and better qualifying and funneling alerts.
  • Dramatically reduce data storage requirements by excluding safe traffic and reducing the need for full packet capture to support forensics. 
LIST OF PROTOCOLS RECOGNIZED
BY QOSMOS TECHNOLOGY

MAXIMUM AGILITY

  • Rapidly deploy (or re-deploy) sensors as needed across continuously evolving network environments.
  • Leverage protocols, metadata, behavioral baselining and analytics to surface new, hard-to-detect threats moving laterally across your network.
  • Gain the speed and flexibility needed to secure and manage forthcoming 5G mobile networks.

INDUSTRY RECOGNITION

  • The Qosmos DPI Probe was named the Network Traffic Analysis product Gold Winner in the 2019 Cybersecurity Excellence Awards.

Qosmos DPI Sensor Cybersecurity Excellence Award 2019 Gold Winner

Datasheet
Qosmos Probe as a DPI Sensor for Network Traffic Analysis
Whitepaper
Survey Report by Cybersecurity Insiders: Importance of Network Traffic Analysis (NTA) for SOCs
Video
Using Cyber Sensors to Detect Advanced Threats – Case Study: Sunburst Attack via Solarwinds
Solution Brief
Qosmos for Cybersecurity: Rich Network Traffic Data for Machine Learning