2
What is Data Trickling? Blue Coat ProxySG appliances implement Data Trickling to improve the user experience during ICAP scanning. Internet Content Adaptation Protocol (ICAP) is the protocol used by Blue Coat ProxySG and ProxyAV appliances, as well as some third party partner appliances, to perform scanning of objects to detect viruses, worms, spyware, and Trojans. Data Trickling is a mechanism implemented by Blue Coat ProxySG appliances performing ICAP scanning that slowly delivers, or trickles, data to the client as it is being scanned. By trickling data, users do not experience the timeouts sometimes associated with waiting for large objects to be scanned, or when scanning is delayed by high loads on content servers or upstream bandwidth limitations. Why should I perform Data Trickling in my network? Blue Coat ProxySG appliances offer two methods of providing feedback to users when virus scanning of an object is in progress – patience pages and data trickling. Patience pages are user-friendly HTML pages displayed to the user, informing them that a scan is in progress. Patience pages, however, are available only in response to Web browser requests. Because the data is not actually sent to the user until the entire object is scanned, a patience page implementation can sometimes result in client applications timing out while waiting for the scan to complete. Data Trickling provides an alternative to patience pages that is better suited to preventing the timeouts that commonly occur when scanning relatively large objects, when scanning objects retrieved upstream over a smaller bandwidth pipe, or when content servers are overloaded. Data Trickling most closely resembles the user experience when scanning is not taking place, and is also a desirable option for use with applications that are not browser-based. Patience pages require that the user is able to display the patience page, but Data Trickling is not limited to Web browser requests and can therefore be ideal for various FTP and HTTP applications. How does Data Trickling work? Data Trickling is designed to prevent the timeouts that can sometimes be associated with patience pages. To prevent such timeouts, Data Trickling trickles or transmits at a very slow rate bytes to the client at the beginning of the scan or near the very end. Because the ProxySG appliance begins serving content without waiting for the ICAP scan result, timeouts do not occur. However, to maintain security, the full object is not delivered until the results of the content scan are complete (and the object is determined to not be infected). Two types of Data Trickling are available on Blue Coat ProxySG appliances – trickle from start and trickle at end. Executive Summary As the leader in Wide Area Application Delivery, Blue Coat products accelerate and secure applications within your WAN and across the Internet. Blue Coat provides a robust and flexible solution that controls users and network resources, protects against Web-based threats, and accelerates the broadest range of WAN-based applications. Whether deployed on either end of a WAN, at Internet access points, or in front of business-critical services, Blue Coat ProxySG appliances provide control points that stop the bad and accelerate the good. As part of this solution, ProxySG appliances support Data Trickling of ICAP objects while they are being scanned, providing a flexible mechanism for scanning objects. Technology Primer: ICAP Data Trickling

ICAP Data Trickling.7

Embed Size (px)

DESCRIPTION

BlueCoat

Citation preview

  • What is Data Trickling?Blue Coat ProxySG appliances implement Data Trickling to improve the user experience during ICAP scanning. Internet Content Adaptation Protocol (ICAP) is the protocol used by Blue Coat ProxySG and ProxyAV appliances, as well as some third party partner appliances, to perform scanning of objects to detect viruses, worms, spyware, and Trojans. Data Trickling is a mechanism implemented by Blue Coat ProxySG appliances performing ICAP scanning that slowly delivers, or trickles, data to the client as it is being scanned. By trickling data, users do not experience the timeouts sometimes associated with waiting for large objects to be scanned, or when scanning is delayed by high loads on content servers or upstream bandwidth limitations.

    Why should I perform Data Trickling in my network?Blue Coat ProxySG appliances offer two methods of providing feedback to users when virus scanning of an object is in progress

    patience pages and data trickling. Patience pages are user-friendly HTML pages displayed to the user, informing them that a scan is in progress. Patience pages, however, are available only in response to Web browser requests. Because the data is not actually sent to the user until the entire object is scanned, a patience page implementation can sometimes result in client applications timing out while waiting for the scan to complete. Data Trickling provides an alternative to patience pages that is better suited to preventing the timeouts that commonly occur when scanning relatively large objects, when scanning objects retrieved upstream over a smaller bandwidth pipe, or when content servers are overloaded. Data Trickling most closely resembles the user experience when scanning is not taking place, and is also a desirable option for use with applications that are not browser-based. Patience pages require that the user is able to display the patience page, but Data Trickling is not limited to Web browser requests and can therefore be ideal for various FTP and HTTP applications.

    How does Data Trickling work?Data Trickling is designed to prevent the timeouts that can sometimes be associated with patience pages. To prevent such timeouts, Data Trickling trickles or transmits at a very slow rate bytes to the client at the beginning of the scan or near the very end. Because the ProxySG appliance begins serving content without waiting for the ICAP scan result, timeouts do not occur. However, to maintain security, the full object is not delivered until the results of the content scan are complete (and the object is determined to not be infected). Two types of Data Trickling are available on Blue Coat ProxySG appliances trickle from start and trickle at end.

    Executive Summary

    As the leader in Wide Area Application Delivery, Blue Coat products accelerate and secure applications within

    your WAN and across the Internet. Blue Coat provides a robust and flexible solution that controls users and

    network resources, protects against Web-based threats, and accelerates the broadest range of WAN-based

    applications. Whether deployed on either end of a WAN, at Internet access points, or in front of business-critical

    services, Blue Coat ProxySG appliances provide control points that stop the bad and accelerate the good. As

    part of this solution, ProxySG appliances support Data Trickling of ICAP objects while they are being scanned,

    providing a flexible mechanism for scanning objects.

    Technology Primer: ICAP Data Trickling

  • Trickle from startIn trickle from start mode, the ProxySG appliance buffers a small amount of the beginning of the response body. As the ICAP server continues to scan the response, the ProxySG appliance allows one byte per second to the client. After the ICAP server completes its scan, if the object is deemed to be clean (no response modification is required), the ProxySG appliance sends the rest of the object bytes to the client at the best speed allowed by the connection. If the object is deemed to be malicious, the ProxySG appliance terminates the connection and the remainder of the response object. Trickling from the start is the more secure Data Trickling option because the client receives only a small amount of data pending the outcome of the virus scan.

    Trickle at endIn trickle at end mode, the ProxySG appliance sends the response to the client at the best speed allowed by the connection, except for the last 16KB of data. As the ICAP server performs the content scan, the ProxySG appliance allows one byte per second to the client. After the ICAP server completes its scan, if the object is deemed to be clean (no response modification is required), the ProxySG appliance sends the rest of the object bytes to the client at the best speed allowed by the connection. This method is more user-friendly than trickle at start. This is because users tend to be more patient when they notice that 99% of the object is downloaded versus 1%, and are less likely to perform a connection restart. However, network administrators might perceive this method as the less secure method, as a majority of the object is delivered before the results of the ICAP scan.

    Trickling is available in two types trickling from start and trickling at end

    Copyright 2007 Blue Coat Systems, Inc. All rights reserved worldwide. No part of this document may be reproduced by any means nor translated to any electronic medium without the written consent of Blue Coat Systems, Inc. Specifications are subject to change without notice. Information contained in this document is believed to be accurate and reliable,

    Blue Coat Systems, Inc. 1.866.30.BCOAT // 408.220.2200 Direct // 408.220.2250 Fax // www.bluecoat.comhowever, Blue Coat Systems, Inc. assumes no responsibility for its use, Blue Coat is a registered trademark of Blue Coat Systems, Inc. in the U.S. and worldwide. All other trademarks mentioned in this document are the property of their respective owners. v.TP-ICAP-DT-v2-1207

    Technology Primer: ICAP Data Trickling

    The Blue Coat Difference

    Multi-Vendor Support Blue Coat ProxySG appliances support multiple Web virus scanning vendors to provide administrators with the flexibility to choose the vendor that best addresses the area(s) of concern of the enterprise. Blue Coat Web virus scanning partners provide protection against viruses, spam, adware, malware, Trojans, and provide intrusion prevention.

    Scanning of Secure Content Blue Coat Systems provides the only solution able to effectively scan secure (HTTPS) content. Without the ability to scan secure content, a virus scanning solution can only guarantee protection of insecure content, leaving a significant security hole that makes the value of the overall solution questionable.


Reproductive health related data from ICAP-supported programs

Reproductive health related data from ICAP-supported programs

Documents
ICAP Project: Data Report Out & Sustainability - AAP.org · ICAP Project: Data Report Out & Sustainability ... SLIDE USED WITH PERMISSION FROM K PARIKH, AND E BIONDI, ... only about

ICAP Project: Data Report Out & Sustainability - AAP.org · ICAP Project: Data Report Out & Sustainability ... SLIDE USED WITH PERMISSION FROM K PARIKH, AND E BIONDI, ... only about

Documents
Returns keep trickling in - Wolfberg

Returns keep trickling in - Wolfberg

Documents
Kelompok 10 - Trickling Filter

Kelompok 10 - Trickling Filter

Documents
Chemically Enhanced Primary Treatment-Trickling Filter ...article.sciencepublishinggroup.com/pdf/10.11648.j.ijepp.20180602... · A chemically enhanced primary treatment-trickling

Chemically Enhanced Primary Treatment-Trickling Filter ...article.sciencepublishinggroup.com/pdf/10.11648.j.ijepp.20180602... · A chemically enhanced primary treatment-trickling

Documents
7-Trickling Filter F11

7-Trickling Filter F11

Documents
ICAP Data Dissemination Meeting

ICAP Data Dissemination Meeting

Documents
ICAP Project Orientation, ICAP Project Orientation, Orientation, … · 2016. 7. 12. · ICAP Project Orientation, ICAP Project Orientation, Orientation, Metric Metric Evidence, &

ICAP Project Orientation, ICAP Project Orientation, Orientation, … · 2016. 7. 12. · ICAP Project Orientation, ICAP Project Orientation, Orientation, Metric Metric Evidence, &

Documents
An Introduction to Trickling Filter Wastewater … to Trickling Filter... · An Introduction to Trickling Filter Wastewater ... Trickling Filter Wastewater Treatment Plants ... DO

An Introduction to Trickling Filter Wastewater … to Trickling Filter... · An Introduction to Trickling Filter Wastewater ... Trickling Filter Wastewater Treatment Plants ... DO

Documents
Manual for Trickling Filter

Manual for Trickling Filter

Documents
Trickling and Rbc

Trickling and Rbc

Documents
Low-rate trickling filter effluent: characterisation and ... · Hydrodynamic models for trickling filters Nature distribution of COD m high-rate trickling filter effluent Advantages

Low-rate trickling filter effluent: characterisation and ... · Hydrodynamic models for trickling filters Nature distribution of COD m high-rate trickling filter effluent Advantages

Documents
Application of Trickling Filter and Vertical Flow Constructed … › pdf-112488-42500?filename=Application of Trickling… · Trickling filters (TF) are not popular for brewery sewage

Application of Trickling Filter and Vertical Flow Constructed … › pdf-112488-42500?filename=Application of Trickling… · Trickling filters (TF) are not popular for brewery sewage

Documents
Orientation to data collection processes and inaugural quarterly discussion of latest data on ICAP programs MER April 25 2007 ICAP quarterly data meeting

Orientation to data collection processes and inaugural quarterly discussion of latest data on ICAP programs MER April 25 2007 ICAP quarterly data meeting

Documents
Module 20: Trickling Filters

Module 20: Trickling Filters

Documents
Trickling Filter and Trickling Filter-Suspended Growth Process Design and Operation

Trickling Filter and Trickling Filter-Suspended Growth Process Design and Operation

Documents
CHAPTER 6 TRICKLING BIOFILTERS (ATTACHED … - 1 CHAPTER 6 TRICKLING BIOFILTERS (ATTACHED GROWTH AEROBIC TREATMENT SYSTEMS) The biological treatment of wastewater with a trickling

CHAPTER 6 TRICKLING BIOFILTERS (ATTACHED … - 1 CHAPTER 6 TRICKLING BIOFILTERS (ATTACHED GROWTH AEROBIC TREATMENT SYSTEMS) The biological treatment of wastewater with a trickling

Documents
ICAP Data Dissemination Meeting September 21, 2010 Charon Gwynn

ICAP Data Dissemination Meeting September 21, 2010 Charon Gwynn

Documents
Trickling Filter Technology for Treating Abattoir Wastewaterwaterandcarbon.com.au/.../2015/...trickling-filter-technology-AMPC.pdf · Trickling Filter Technology for Treating Abattoir

Trickling Filter Technology for Treating Abattoir Wastewaterwaterandcarbon.com.au/.../2015/...trickling-filter-technology-AMPC.pdf · Trickling Filter Technology for Treating Abattoir

Documents
ICAP Training Webinar - South Dakotadhs.sd.gov/developmentaldisabilities/docs/ICAP... · software (Windows Version 2.0) to merge new data with the statewide ICAP database. The statewide

ICAP Training Webinar - South Dakotadhs.sd.gov/developmentaldisabilities/docs/ICAP... · software (Windows Version 2.0) to merge new data with the statewide ICAP database. The statewide

Documents
ICAP Quarterly Data Dissemination Meeting

ICAP Quarterly Data Dissemination Meeting

Documents
Kel 1 - Trickling Filter

Kel 1 - Trickling Filter

Documents
Cold-climate nitrification on plastic media trickling filters › af0a › a2a90305ea2aca62e... · 2018-12-23 · in trickling filters Analysis of data from Maier flat plate biofilm

Cold-climate nitrification on plastic media trickling filters › af0a › a2a90305ea2aca62e... · 2018-12-23 · in trickling filters Analysis of data from Maier flat plate biofilm

Documents
ICAP M&E Master Slide Deck Data through December 31, 2011

ICAP M&E Master Slide Deck Data through December 31, 2011

Documents
40692328 Trickling Filter

40692328 Trickling Filter

Documents
iCAP RQ ICP-MS - Thermo Fisher Scientific · Thermo Scientific iCAP RQ ICP-MS Pre-Installation Requirements Guide (P/N BRE0009927, Revision A) viii Technical Data iCAP RQ 2-Channel

iCAP RQ ICP-MS - Thermo Fisher Scientific · Thermo Scientific iCAP RQ ICP-MS Pre-Installation Requirements Guide (P/N BRE0009927, Revision A) viii Technical Data iCAP RQ 2-Channel

Documents
Secondary Treatment (Trickling Filters)

Secondary Treatment (Trickling Filters)

Documents
TRICKLING FILTERS by Dr. Moazzam Ali Khansmarti.edu.pk/Lectures/Waste-Water-Management/Trickling Filters.pdf · Trickling filters Trickling filter is an attached growth process i.e

TRICKLING FILTERS by Dr. Moazzam Ali Khansmarti.edu.pk/Lectures/Waste-Water-Management/Trickling Filters.pdf · Trickling filters Trickling filter is an attached growth process i.e

Documents
ICAP HIV Testing and Counseling indicators Initial summary of data, January-March 2010 quarter ICAP

ICAP HIV Testing and Counseling indicators Initial summary of data, January-March 2010 quarter ICAP

Documents
73819206 Trickling Filter

73819206 Trickling Filter

Documents