Home » blogs » auzelac's blog

Ready for a scary thing? Deep Packet Inspection!

According to Wikipedia Deep Packet Inspection is “a form of computer network packet filtering that examines the data part of a through-passing packet, searching for non-protocol compliance or predefined criteria to decide if the packet can pass. This is in contrast to shallow packet inspection (usually called just packet inspection) which just checks the header portion of a packet.”

First off, this is a very real technology.  A quick search via google brought the company Bivio Networks to my attention. (* Disclaimer: I have no interest, financial or otherwise with this company.)  Bivio’s  7000 series claims that
“when fully configured, the 7000's application processing subsystem offers 45,000 MIPS -- enough to run "any IP network service" at wire speeds up to 10Gbps -- including IDS/IDP, firewalling, VPN, network surveillance, lawful interception, and application traffic management. Developers can use any of the standard Linux components (such as iptables) as part of their deep packet processing applications.

Now let’s look at some of the implications of DPI.  A very interesting article on here from ars technica puts things in an interesting light:

“Imagine a device that sits inline in a major ISP's network and can throttle P2P traffic at differing levels depending on the time of day. Imagine a device that allows one user access only to e-mail and the Web while allowing a higher-paying user to use VoIP and BitTorrent. Imagine a device that protects against distributed denial of service (DDoS) attacks, scans for viruses passing across the network, and siphons off requested traffic for law enforcement analysis. Imagine all of this being done in real time, for 900,000 simultaneous users, and you get a sense of the power of deep packet inspection (DPI) network appliances.
Although the technology isn't yet common knowledge among consumers, DPI already gives network neutrality backers nightmares and enables American ISPs to comply with CALEA (government-ordered Internet wiretaps) reporting requirements. It also just might save the Internet (depending on who you believe). “
The power of this technology is simply awesome, and the impacts it can have are serious.  The current state of government mandated network monitoring forces some network operators to consider implementing this.  One word jumps to my mind, and that’s SCARY – and I am not referring to my driver’s license picture either!

By the way, did I mention that the above Bivio 7000 is listed at $10,000!

Trackback URL for this post:

http://blogs.globalcrossing.com/trackback/357
auzelac – Thu, 2007 – 08 – 02 14:54
broadbandCALEAFCCInternetIP Convergencenet neutralityRegulatorySecurityVoIPWeb 2.0
auzelac's blog

Thanks

Very interesting information. Thanks!

nick (not verified) – Fri, 2008 – 01 – 11 00:41
reply

appliances

DPI allows phone and cable companies to "readily know the packets of information you are receiving online--from e-mail, to websites, to sharing of music, video and software downloads"[1] - as would a network analysis tool.

Maytag Parts (not verified) – Sat, 2007 – 12 – 15 14:03
reply

Post new comment

*
*


*

  • Easily link to terms in various wikis or other websites by typing [[prefix:term]]. Use the "|" character to create a "piped link," e.g., "[[w:public transport|public transportation]]" displays as "public transportation." For a full list of available prefixes and the websites to which they point, see interwiki.
  • Allowed HTML tags: <a> <em> <strong> <cite> <code> <ul> <ol> <li> <dl> <dt> <dd> <pre> <br> <p> <em> <img> <blockquote> <table> <tr> <td>
  • Lines and paragraphs break automatically.
More information about formatting options
Verify comment authorship
Captcha Image: you will need to recognize the text in it.
*
Please type in the letters/numbers that are shown in the image above.