2
Qosmos ixEngine DPI & Metadata Extraction SDK Development Tools For Best-In-Class Network Intelligence Qosmos ixEngine is a DPI and metadata extraction software development kit used by TEMs and Solution Vendors to embed state of the art flow decoding technology into their applications. Product: Packet lnsp#t~on and 1 Network lnteltigence !%hie i- i E. I Development Ki Applications: Embedding DPI and a' I metadata lnto various network appl~cat~ons Users: Developerr vvork~ng for 1 Equ~pment Vendors and Solut~on Vendors Key Features: Embedded software l~brar~es for full traffic v~sib~l~ty at we network sped Application Program ..-*-A-.- r--A- CPU +OS ixEngine delivers complete visibility into network traffic in real time, including protocol and application classification and the delivery of communication metadata. This enables developers to inject application-level insight into their solutions. Designed with developers in mind, ixEngine accelerates the product development cycle. Ready-to-use software libraries reduce effort and lower risks associated with developing and maintaining a highly complex technology internally. Beyond DPI Qosmos delivers enhanced Network Intelligence by going beyond traditional DPI to also extract protocol and application metadata, enabling detailed understanding of network transactions up to the application level. High performance The only DPI SDK that can handle a data plane of 10 Gbps on Linux Optimized for multicore processors such as Cavium, Tilera and NetLogic Many configuration options enable developers to optimize integration Optimized R&D Qosmos ready-to-use software reduces development cycles, costs and risks Developers can focus on building complete solutions and rely on Qosmos for its domain 'lThere is a trend towards using expertise in protocol, application and metadata extraction niche specialists in the DPI area. Future-proof technology with continuously Outsourcing updated protocols and applications technical capabilities allows Independent core decoding engine and protocol plugin library for fast protocol Telecom Equipment Manufacturers updates while preserving engine stability to focus on overall solutions Protocol Plugin Creator to add customized protocol and application plugins to ixEngine development. " Technology at a glance Classification of network flows using stateful Deep Packet Inspection and statistical protocol identification Real-time extraction of metadata and content from traffic flows Correlation at flow, session, application, service and user levels 1000+ protocol and application plugins to classify flows and extract information Designed for: Passive-mode applications: processing of extracted traffic information Inline-mode applications: managing traffic based on extracted information Graham Finnie Chief Analyst, Heavy Reading Your Network is Information

Qosmos ixEngine - WikiLeaks

  • Upload
    others

  • View
    16

  • Download
    0

Embed Size (px)

Citation preview

Page 1: Qosmos ixEngine - WikiLeaks

Qosmos ixEngine DPI & Metadata Extraction SDK

Development Tools For Best-In-Class Network Intelligence

Qosmos ixEngine is a DPI and metadata

extraction software development kit

used by TEMs and Solution Vendors to embed

state of the art flow decoding technology

into their applications.

Product: Packet lnsp#t~on and 1 Network lnteltigence ! % h i e

i- i E. I

Development Ki

Applications: Embedding DPI and

a' I metadata lnto various network appl~cat~ons

Users: Developerr vvork~ng for

1 Equ~pment Vendors and Solut~on Vendors

Key Features: Embedded software l~brar~es for full traffic v ~ s i b ~ l ~ t y at w e network s p e d

Application Program

..-*-A-.- r - -A -

CPU +OS

ixEngine delivers complete visibility into

network traffic in real time, including protocol

and application classification and the delivery

of communication metadata. This enables

developers to inject application-level insight into

their solutions.

Designed with developers in mind, ixEngine

accelerates the product development cycle.

Ready-to-use software libraries reduce effort

and lower risks associated with developing

and maintaining a highly complex technology

internally.

Beyond DPI Qosmos delivers enhanced Network Intelligence

by going beyond traditional DPI to also extract

protocol and application metadata, enabling

detailed understanding of network transactions

up to the application level.

High performance The only DPI SDK that can handle a data plane of 10 Gbps on Linux

Optimized for multicore processors such as Cavium, Tilera and NetLogic

Many configuration options enable developers to optimize integration

Optimized R&D Qosmos ready-to-use software reduces development cycles, costs and risks

Developers can focus on building complete solutions and rely on Qosmos for its domain 'lThere is a trend towards using expertise in protocol, application and metadata extraction niche specialists in the DPI area.

Future-proof technology with continuously Outsourcing updated protocols and applications technical capabilities allows Independent core decoding engine and protocol plugin library for fast protocol Telecom Equipment Manufacturers updates while preserving engine stability to focus on overall solutions Protocol Plugin Creator to add customized protocol and application plugins to ixEngine development. "

Technology at a glance Classification of network flows using stateful Deep Packet Inspection and statistical protocol identification

Real-time extraction of metadata and content from traffic flows

Correlation at flow, session, application, service and user levels

1000+ protocol and application plugins to classify flows and extract information

Designed for:

Passive-mode applications: processing of extracted traffic information

Inline-mode applications: managing traffic based on extracted information

Graham Finnie Chief Analyst, Heavy Reading

Your Network is Information

Page 2: Qosmos ixEngine - WikiLeaks

Qosmos ixEngine DPI & Metadata Extraction SDK

% QOSMOS

Beyond DPI: Network Intelligence Technology with metadata extraction Software libraries provide complete traffic

visibility at flow, session, application, service

and user levels. Users can configure the

mechanisms to activate/deactivate depending

on feature and performance requirements:

Protocol signature using Layer 7 stateful DPI (no use of TCPIUDP ports)

Statistical protocol recognition

Automatic de-capsulation of tunneledl encapsulated traffic

Operates on fragmented, duplicated, de-sequenced packets

Operates on bidirectional and unidirectional traffic

Parsing of IP flows enables real-time extraction of traffic metadata (caller, type of file downloaded, IMSI, etc.) and content (e.g. email text or VolP stream based on RTP data)

Advanced condition-matching mechanism based on session context to filter data and packets

High-speed keyword search leveraging flow metadata

Delivery of structured traffic information over simple APls

Memory footprint 400 KB for executable code

400 KB for the full set of protocol & application plugins

2 KB per session

Flexible integration Tunable ratio for granularity of flow analysis/ packet processing rate to fit your application requirements

User-defined metadata extraction

Switchable IP and TCP flow reassembly process for packet reordering

Customizable early packet discard mechanism

Optional packet pre-filtering: depending on application requirements, all packets or only a subset of packets are parsed by ixEngine (e.g. classification only requires the first packets of a flow)

Included in ixEngine Software libraries for flow decoding

Fully documented APls, tutorials and code samples to facilitate integration into third- party solutions

Protocol plugin watch and updates as technology evolves

Frequent delivery of new protocol plugins

Protocol Plugin Creator

Protocol Plugin Creator to easily build Supported environments additional, customized protocol plugins

Linux distributions Debugging information delivery to secure Linux %mdard Base 3.x implementation CPU architectures

Qosmos SessionizerTM ixEngine dynamic session context contains flow identification and observed metadata

Session context is available to users (e.g. for packet management leveraging flow metadata)

Correlation of control and data sessions

Inheritance of traffic attributes on correlated sessions (e.g. SIP session attribute "caller" inherited in RTP session state)

Performance Scalability up to core network speeds at 10's of Gbps

X8632 / X86-64 Linux User Mode

X86-32 Linux Kernel Mode Netlogic XLR 7xx 1 RMI 05 Cavium Octeon 38xx I Simple Executive Cavium Octeon 58xx / Simple Executive Tilera TILEPro64 Freescale PowerQUlCC / Linux User mode Freescale 8572 / Linux User mode

Hardware platforms IBM X-Series servers Bivio 7000 Tilera TILExpress-20GTM card Cavium Networks PCI-Express 10GbE Adapters GE Fanuc NPA-38x4 card

Optimized symmetric multiprocessing (SMP) Continuous Computing Flexpacket PP50 support for scalability up to 96 cores

Optimized code for the industry's highest services performance multicore processors such as Training, certification and support programs Cavium Octeon, NetLogic and Tilera TilePro

Integration of ixEngine into your solution

i Protocol & Application Support

l ~ f l u g i n s M i t e

* 100[k p m d s and appliatiom.

I 0 450Qt metadata extracted

1 EmmpIerof -and ' idmif id 1

I 1 * AudidVideo streaming: RTIf RTSE YVMk

YoarTube, Dai&tottMn. Reb F%px etc.

* VolR H323, g!? MCQ a. Enterprise: Cirw Or& MS Exchamp, M c r Z k m. Peer-to-Per: W f e . B i t T m t efc

* Newark: rrwIE M, 5IX2 etc.

Instant Meaaging: skypea EUYY, Gtalk, etc

Webrnail: GmaiI, Hc~m-rait Yahoo!W7, &c 1 l

flaw level: IPa;ddrezr, r m p o r q , eff

1 S e s i o n M : @ t e r P w U ~ ~ ~ u ' ~ y t 9 1 mfcrrmatiinz etc. &&&."; is%t-

;k*z-".Ie% * Snnakwr: w q d p m p r r u p e r

User h l : cdfec; &gin, fMSf, etc.

Maximum evolutim

I C o n t i w s protocd frequent updates. ~ y p i ~ a l proto~r updates ' imitable within days

l I Qn-demand devdcpnent of custom pratDcof

rerognition

* Prom& Rugh Crca(rr to dewhp your- arstomired protecd and applitltlan phrgif l~

l I

Contacts EMEA Americas APAC

1 Pars - France Germantown, USA S~ngapore - 3 17809 1440 +l 301 5288301 +6563966401

'a-sales@qosrnos corn us-ralesOqosmos corn apac-sales@qosrnos corn


Wikileaks qr

Wikileaks qr

News & Politics
QoSMOS FP7 ICT projekt - kognitív rádió rendszerek analóg TV … · 2012-10-16 · QoSMOS FP7 ICT projekt - kognitív rádió rendszerek analóg TV sávokban Kollár Zsolt, Bitó

QoSMOS FP7 ICT projekt - kognitív rádió rendszerek analóg TV … · 2012-10-16 · QoSMOS FP7 ICT projekt - kognitív rádió rendszerek analóg TV sávokban Kollár Zsolt, Bitó

Documents
Covering wikileaks

Covering wikileaks

News & Politics
Wikileaks NDA

Wikileaks NDA

News & Politics
THE CISO CLOUD/SAAS - QOSMOS

THE CISO CLOUD/SAAS - QOSMOS

Documents
QoSMOS D53 PU FINAL v1dot1 - lopezbenitez.es · target scenarios of QoSMOS (cellular extension, femtocell, ad hoc network) are also included. Keyword list: Access control, ad hoc

QoSMOS D53 PU FINAL v1dot1 - lopezbenitez.es · target scenarios of QoSMOS (cellular extension, femtocell, ad hoc network) are also included. Keyword list: Access control, ad hoc

Documents
QOSMOS LIBDEVICE 2

QOSMOS LIBDEVICE 2

Documents
WikiLeaks · 2019. 1. 30. · WikiLeaks

WikiLeaks · 2019. 1. 30. · WikiLeaks

Documents
6th NATIONAL ICT SUMMIT Venue: NIPAM, Windhoek, Namibia ... · Qosmos ixEngine also provides computed metadata like VoIP MOS and Rfactor Identifiers: e.g. email sender / receiver

6th NATIONAL ICT SUMMIT Venue: NIPAM, Windhoek, Namibia ... · Qosmos ixEngine also provides computed metadata like VoIP MOS and Rfactor Identifiers: e.g. email sender / receiver

Documents
D1.4 QoSMOS consolidated system requirements...QoSMOS D1.4 Issue 2 8 1 Executive Summary This report contains a set of requirements that are believed essential for the QoSMOS system

D1.4 QoSMOS consolidated system requirements...QoSMOS D1.4 Issue 2 8 1 Executive Summary This report contains a set of requirements that are believed essential for the QoSMOS system

Documents
Wikileaks pp

Wikileaks pp

Education
wikileaks dominicano

wikileaks dominicano

Documents
Wikileaks: Cronología

Wikileaks: Cronología

News & Politics
WikiLeaks Multimedia

WikiLeaks Multimedia

Documents
Qosmos ixEngine - Lanner ixEngine Market’s Leading ... TCP Source port, destination port, client port, server port ... Linux/ IntelDPDK /!WIND!RIVERDPDK!/!6WIND!DPDK! ixEngine!DPI

Qosmos ixEngine - Lanner ixEngine Market’s Leading ... TCP Source port, destination port, client port, server port ... Linux/ IntelDPDK /!WIND!RIVERDPDK!/!6WIND!DPDK! ixEngine!DPI

Documents
Post wikileaks

Post wikileaks

Business
WIKILEAKS ISP nuclear bunker cave WIKILEAKS barlang

WIKILEAKS ISP nuclear bunker cave WIKILEAKS barlang

Entertainment & Humor
Arrêt Qosmos

Arrêt Qosmos

Documents
Wikileaks Italy

Wikileaks Italy

Documents
QoSMOS - CORDIS · QoSMOS D4.3 11 1 Executive Summary The objective of this deliverable is to summarize the new results achieved within QoSMOS to specify potential physical layer

QoSMOS - CORDIS · QoSMOS D4.3 11 1 Executive Summary The objective of this deliverable is to summarize the new results achieved within QoSMOS to specify potential physical layer

Documents
WikiLeaks · 2017. 9. 6. · WikiLeaks

WikiLeaks · 2017. 9. 6. · WikiLeaks

Documents
Qosmos* Deep Packet Inspection Characterization - Intel · PDF fileWhite Paper: Qosmos* Deep Packet Inspection Characterization 5 2 Use-Case Details 2.1 Background on DPI Workload

Qosmos* Deep Packet Inspection Characterization - Intel · PDF fileWhite Paper: Qosmos* Deep Packet Inspection Characterization 5 2 Use-Case Details 2.1 Background on DPI Workload

Documents
Qosmos Network lntelligence I for Lawful Interception, I · Qosmos ixMachine LI Edition at the instant upgrade of the monitoring center interception point for IP traffic capability

Qosmos Network lntelligence I for Lawful Interception, I · Qosmos ixMachine LI Edition at the instant upgrade of the monitoring center interception point for IP traffic capability

Documents
Wikileaks - Epikaira.gr

Wikileaks - Epikaira.gr

Education
QoSMOS - CORDISQoSMOS D8.6 Standardization and Dissemination activity report v2 5 Executive Summary QoSMOS (Quality Of Service and MObility driven cognitive radio Systems) is an EU-funded

QoSMOS - CORDISQoSMOS D8.6 Standardization and Dissemination activity report v2 5 Executive Summary QoSMOS (Quality Of Service and MObility driven cognitive radio Systems) is an EU-funded

Documents
QoSMOS - Europa · QoSMOS D2.3 1/95 FP7-ICT-2009-4/248454 QoSMOS D2.3 System specification and evaluation criteria Contractual Date of Delivery to the EC: 30.11.11 Actual Date of

QoSMOS - Europa · QoSMOS D2.3 1/95 FP7-ICT-2009-4/248454 QoSMOS D2.3 System specification and evaluation criteria Contractual Date of Delivery to the EC: 30.11.11 Actual Date of

Documents
Wikileaks, ¿ejemplo de ciberguerra social?. Wikileaks

Wikileaks, ¿ejemplo de ciberguerra social?. Wikileaks

Technology
D1.4 QoSMOS consolidated system requirements

D1.4 QoSMOS consolidated system requirements

Documents
ANNUAL REPORT 2017Qosmos’ DPI solution ixEngine is an integral part of many applications—rang-ing from firewalls to solutions for traffic optimization, and the acquisition of Qosmos

ANNUAL REPORT 2017Qosmos’ DPI solution ixEngine is an integral part of many applications—rang-ing from firewalls to solutions for traffic optimization, and the acquisition of Qosmos

Documents
Overview of the EU-project QoSMOS German Cognative...QoSMOS at a glance • Quality of Service and MObility driven cognitive radio Systems • To develop critical technologies, value

Overview of the EU-project QoSMOS German Cognative...QoSMOS at a glance • Quality of Service and MObility driven cognitive radio Systems • To develop critical technologies, value

Documents