Deep Packet Inspection Deep Packet Inspection l Definition
- Slides: 18
Deep Packet Inspection
Deep Packet Inspection l Definition l Uses l Privacy Concerns l Neutrality Concerns
DPI – Definition l Packet Inspection – looking at the header portion of a packet for security or analysis purposes.
DPI – Internet Packets & OSI l Deep Packet Inspection (DPI) – Removes the header information from a packet to inspect the actual contents of the packet. l Capable of inspecting layers 2 – 7 of the OSI model.
DPI – Potential Uses Marketing Load Balancing Virus/Spam Protection Copyright Enforcement Surveillance Tiered Internet Access
DPI – Current Capabilities l Targeted Advertising – The ability to deliver ad content based on a specific user’s browsing habits.
DPI – Current Capabilities l P 2 P file sharing and streaming video represent nearly 60% of today's bandwidth Source: http: //arstechnica. com/news. ars/post/20070619 -the-youtube-effect-http-traffic-now-eclipses-p 2 p. html
DPI – Current Capabilities l Bandwidth Optimization – Prioritizing certain network services over others to improve overall network performance. l Tiered Broadband Services – The ability to fine tune services and restrictions on different levels of internet access.
DPI – Current Capabilities Plus. Net Service Plans
DPI – Current Capabilities l Lawful Intercept – The requirement of telecommunications systems to provide access to information to law enforcement agencies. l DPI enables efficient lawful intercept of internet traffic.
DPI – Current Capabilities l “The Great Firewall of China” – An effort by the Chinese government to block its citizens’ access to “subversive” material. l Uses DPI, along with packet filtering, IP blocking, and URL filtering to restrict access to content.
DPI – Current Capabilities l In 2004, Mark Klein, an AT&T technician, uncovered the existence of a secret room used by the NSA to intercept its network traffic.
DPI – Current Capabilities l Narus ST-6400 ¡ ¡ l Capable of 10 G/s of analysis CALEA-compliant http: //www. nsawatch. org/nsa_octopus. jpg
DPI – Current Capabilities Numerous lawsuits have since been filed, with no success, challenging the indiscriminate collection of domestic communications. l In 2007, the FISA bill was amended to accommodate the collection of intelligence from those “reasonably believed” to be linked to Al. Qaeda or other terrorist groups. l Telecoms like AT&T – which participated in the initial program – were granted immunity from civil liability. l
DPI – Concerns l Major ¡ Net Concerns: Neutrality ¡ Privacy ¡ Legality
DPI – Net Neutrality l “…the principle that Internet users should be in control of what content they view and what applications they use on the Internet” http: //www. google. com/help/netneutrality. html l Practices of China represent an obvious threat to net neutrality – but what about “tiered” internet services?
DPI – Privacy Concerns l 2006 – Phorm conducted a test of its services on 18, 000 unwitting broadband subscribers l 2008 – Investigation launched into the 2006 secret trials of the Phorm system. l No charges filed since they provided an opt-out mechanism.
DPI - Summary
- Deep packet injection
- Raspberry pi deep packet inspection
- Deep packet inspection architecture
- Deep packet inspection encrypted traffic
- Wireshark appliance
- Deep packet inspection architecture
- Stateless inspection firewall
- Deep packet injection
- Deep pocket inspection
- Deep asleep deep asleep it lies
- Deep forest: towards an alternative to deep neural networks
- 深哉深哉
- Cereal packet family
- Meat inspection act apush definition
- Tm44 inspection definition
- Food safety and inspection service definition
- Cqc mock inspection template
- Rectifying inspection definition
- Memory storage is never automatic; it always takes effort.