Deep Packet Inspection Deep Packet Inspection l Definition
- Slides: 18
Deep Packet Inspection
Deep Packet Inspection l Definition l Uses l Privacy Concerns l Neutrality Concerns
DPI – Definition l Packet Inspection – looking at the header portion of a packet for security or analysis purposes.
DPI – Internet Packets & OSI l Deep Packet Inspection (DPI) – Removes the header information from a packet to inspect the actual contents of the packet. l Capable of inspecting layers 2 – 7 of the OSI model.
DPI – Potential Uses Marketing Load Balancing Virus/Spam Protection Copyright Enforcement Surveillance Tiered Internet Access
DPI – Current Capabilities l Targeted Advertising – The ability to deliver ad content based on a specific user’s browsing habits.
DPI – Current Capabilities l P 2 P file sharing and streaming video represent nearly 60% of today's bandwidth Source: http: //arstechnica. com/news. ars/post/20070619 -the-youtube-effect-http-traffic-now-eclipses-p 2 p. html
DPI – Current Capabilities l Bandwidth Optimization – Prioritizing certain network services over others to improve overall network performance. l Tiered Broadband Services – The ability to fine tune services and restrictions on different levels of internet access.
DPI – Current Capabilities Plus. Net Service Plans
DPI – Current Capabilities l Lawful Intercept – The requirement of telecommunications systems to provide access to information to law enforcement agencies. l DPI enables efficient lawful intercept of internet traffic.
DPI – Current Capabilities l “The Great Firewall of China” – An effort by the Chinese government to block its citizens’ access to “subversive” material. l Uses DPI, along with packet filtering, IP blocking, and URL filtering to restrict access to content.
DPI – Current Capabilities l In 2004, Mark Klein, an AT&T technician, uncovered the existence of a secret room used by the NSA to intercept its network traffic.
DPI – Current Capabilities l Narus ST-6400 ¡ ¡ l Capable of 10 G/s of analysis CALEA-compliant http: //www. nsawatch. org/nsa_octopus. jpg
DPI – Current Capabilities Numerous lawsuits have since been filed, with no success, challenging the indiscriminate collection of domestic communications. l In 2007, the FISA bill was amended to accommodate the collection of intelligence from those “reasonably believed” to be linked to Al. Qaeda or other terrorist groups. l Telecoms like AT&T – which participated in the initial program – were granted immunity from civil liability. l
DPI – Concerns l Major ¡ Net Concerns: Neutrality ¡ Privacy ¡ Legality
DPI – Net Neutrality l “…the principle that Internet users should be in control of what content they view and what applications they use on the Internet” http: //www. google. com/help/netneutrality. html l Practices of China represent an obvious threat to net neutrality – but what about “tiered” internet services?
DPI – Privacy Concerns l 2006 – Phorm conducted a test of its services on 18, 000 unwitting broadband subscribers l 2008 – Investigation launched into the 2006 secret trials of the Phorm system. l No charges filed since they provided an opt-out mechanism.
DPI - Summary
Deep packet injection
Raspberry pi deep packet inspection
Deep packet inspection architecture
Deep packet inspection encrypted traffic
Wireshark appliance
Deep packet inspection architecture
Stateless inspection firewall
Deep packet injection
Deep pocket inspection
Deep asleep deep asleep it lies
Deep forest: towards an alternative to deep neural networks
深哉深哉
Cereal packet family
Meat inspection act apush definition
Tm44 inspection definition
Food safety and inspection service definition
Cqc mock inspection template
Rectifying inspection definition
Memory storage is never automatic; it always takes effort.
