SlideShare une entreprise Scribd logo

SMARTxAC / Network Polygraph

Télécharger en tant que PPTX, PDF
CSUC - Consorci de Serveis Universitaris de Catalunya
CSUC - Consorci de Serveis Universitaris de Catalunya

SMARTxAC és una eina desenvolupada pel CCABA (UPC), en col·laboració amb el CSUC (abans CESCA), que permet el monitoratge i l'anàlisi del tràfic de la xarxa, donant diferents vistes als usuaris perquè vegin exclusivament el seu. Des de l'any 2003 ha evolucionat i ha servit, d'una banda, com a catalitzador per a la recerca dins la universitat i, de l'altra, com a potent eina per a la detecció d'anomalies i patrons de tràfic anormals per als seus gestors i usuaris. L'evolució d'SMARTxAC és Network Polygraph. En aquesta presentació s'explica quina ha estat la utilització de la plataforma al CSUC, en el context de l'Anella Científica, la seva evolució, la seva nova imatge i funcionalitats.

Technologie
1  sur  37
SMARTxAC / Network Polygraph “A Network Visibility Service born at Anella Científica” Maria Isabel Gandía – mariaisabel.gandia@csuc.cat Josep Sanjuas – jsanjuas@polygraph.io
Companies depend on Networks e-mail, databases, shared folders, VoIP, cloud...
Networks are complex and hard to manage
Network Downtime equals Cost $42,000/h avg cost of downtime $5,600/min avg cost of downtime (datacenters) 87 hours avg downtime per year 200 min MTTR per medium outage itpi
Network Visibility • To properly manage a network, you need to see what happens inside it • First step to... – identify congested links – remove unwanted network traffic – disconnect bandwidth hogs – troubleshoot performance issues – plan for future needs
New User Interface
Network Visibility Technologies • Hardware-based («Deep Packet Inspection») – Brute-force approach: inspect all packets – High visibility, but very high cost • Software-based (NetFlow, SNMP) – Use traffic statistics exported by routers – Mid visibility & low cost
Network Polygraph - Technology • Best of both worlds: high visibility, low cost • How? NetFlow + artificial intelligence NetFlow on steroids: application identification, SSL domain ID, attack & anomaly detection capabilities
History: SMARTxAC to Polygraph Commercial Internet
1999-2003: Inception  Previous monitoring and analysis projects: • CASTBA • MEHARI • MIRA  With the colaboración among several universities • UPM (Universidad Politécnica de Madrid) • UC3M (Universidad Carlos III de Madrid) • UPC (Universitat Politècnica de Catalunya)  And the participation of: • RedIRIS • CESCA • Telefónica Investigación y Desarrollo • Institut Català de Tecnologia  Focus: monitoring ATM networks  Approach: deep packet inspection with sampling
2003: The Birth of SMARTxAC Collaboration: CESCA + CCABA/UPC Objective: monitoring Anella Cientifica-RedIRIS connection Roles • CESCA: requirements, testbed • CCABA/UPC: research, development Objectives: • Low-cost platform • Continuously monitor Anella Científica • Detect anomalies and irregular usage • Multi-tenant: accessible by many institutions – each institution can see their own traffic only
2003: Architecture Optical Spitter Capture Endace DAG card Analysis
2003: User Interface Port Number Machine learning 47.39% 0.10% 0.43% 10.34% 19.65% 7.97% 2.48% 0.08% 0.55% 1.84% 2.26% 0.10% 0.53% 6.04% 0.23% 40.07% 2.97% 2.43% 18.47% 8.17% 0.30% 1.52% 0.48% 9.67% 1.22% 0.51% 0.30% 8.48% 5.42% A_UKNWN DNS FTP GAMES IRC MAIL MULTIMEDIA NETFS NETWORK NEWS NO_TCPUDP OTHERS P2P T_UKNWN TELNET UNIX WWW
2003-2011: Network Scales Up More network interfaces monitored at Anella Científica: • RedIRIS • Commercial internet connection • CATNIX  Internal traffic not monitored Increasing bandwidth usage Realization: DPI is not cost effective! Last straw: switching to 10Gbps links  Distributed core with to main nodes (Campus Nord & Telvent) Solution: NetFlow
2011: Upgrade to 10Gbps - NetFlow 2x10Gbps NetFlow Flow-based analysis
User Interface Redesign
2013: Commercial Stage & Spin-off • Research group gathers commercial interest • Received public funding for tech transfer – SMARTxAC to generalized product • From a research product to a commercial one – Talaia Networks, S.L.: a spin-off of UPC – Network Polygraph: «spin-off of SMARTxAC»
Network Polygraph
Deployment Models: Cloud Customer Network Cloud
Deployment Models: On-Premises Customer’s Datacenter
Multi-Tenancy Module Customer A Customer B Customer C
Subscription Models Service (SaaS) • Monthly or yearly billing • Includes support • Externally managed • Regularly updated Perpetual License • Payable upfront • Support & maintenance fee • Not accessible by our personnel
The SaaS Advantage • No upfront costs for end customer – Lower barrier of entry (esp. small-mid customers) – No need to “commit” to our solution – Simply configure routers to send NetFlow to us • Managed solution – Zero maintenance, zero hardware, zero software – Always upgraded to latest version
Main Large-scale Deployments • CSUC (Anella Científica network) – Connects ≈90 public institutions in Catalonia – Offered as value-added service to >80 admins • Red.es (RedIRIS network) – Handles all Spanish academic network traffic – Connects ≈450 public institutions in Spain – Won as customer in competitive tender
Use Cases • Small-medium companies – Bandwidth is a precious resource, Polygraph helps optimize its usage • “Why is the network so slow? Should we invest in more bandwidth?” • Found 1 user constantly downloading files from Mega • Link was shared with other offices, affecting whole company
Use Cases (2) • Large companies – Moving a single “hardware DPI probe” around • Deploying full DPI was too expensive • With Polygraph they could cover all branches! – Realized most attacks come from China • ISP can block certain IP subnets • Attacks do not consume customer bandwidth – Detected covert bitcoin mining operations • Users were pumping the electricity bill for their personal gain
Use Cases (3) • ISP & Managed Network Service Providers – Important customer with an office in North Africa: • Bandwidth: precious resource • Wanted to check it is spent wisely – no unwanted traffic – Receiving large # of copyright violation notices!? • Traffic analysis reveals P2P traffic • Particularly, upstream traffic: serving illegal content! – Use our product to detect network attacks • Offer product as value-added service to corporate customers • Sell anti-virus solutions to their own customers
Deployment at CATNIX: Proposal Member A Member B Member C
Website + On-Line Demo https://polygraph.io
Network Polygraph Talaia Networks, S.L. K2M – Parc UPC Campus Nord Jordi Girona, 1-3 Barcelona (08034) Spain Telephone: +34 93 405 45 87 contact@polygraph.io https://polygraph.io
traffic volume, breakdown by application
protocol breakdown
top talkers (addresses, ports, autonomous systems)
traffic geolocation
anomaly and attack detection with automatic baselining
indexed traffic database for forensic analysis
automated downloadable reports

Recommandé

Low Latency Computing and 5G Networks - targeting the future
Low Latency Computing and 5G Networks - targeting the futureLow Latency Computing and 5G Networks - targeting the future
Low Latency Computing and 5G Networks - targeting the futurehubraum IoT Academy
 
Spider Cloud Wireless & Vodafone case studies
Spider Cloud Wireless & Vodafone case studiesSpider Cloud Wireless & Vodafone case studies
Spider Cloud Wireless & Vodafone case studiesSmall Cell Forum
 
SIGFOX Makers Tour - Dublin
SIGFOX Makers Tour - DublinSIGFOX Makers Tour - Dublin
SIGFOX Makers Tour - DublinNicolas Lesconnec
 
Internet of Things (IoT): Micro-location and Smart Buildings
Internet of Things (IoT): Micro-location and Smart BuildingsInternet of Things (IoT): Micro-location and Smart Buildings
Internet of Things (IoT): Micro-location and Smart BuildingsFaheem Zafari
 
Using lo rawan and vibration monitoring for predictive maintenance v2
Using lo rawan and vibration monitoring for predictive maintenance v2Using lo rawan and vibration monitoring for predictive maintenance v2
Using lo rawan and vibration monitoring for predictive maintenance v2Actility
 
Ignes lo ra - thierry lestable - 29102015 - vfinal
Ignes lo ra - thierry lestable - 29102015 - vfinalIgnes lo ra - thierry lestable - 29102015 - vfinal
Ignes lo ra - thierry lestable - 29102015 - vfinalThierry Lestable
 
Air finder Supertag Webinar
Air finder Supertag WebinarAir finder Supertag Webinar
Air finder Supertag WebinarBrian Ray
 
Small Cell Deployment Stories 2016
Small Cell Deployment Stories 2016Small Cell Deployment Stories 2016
Small Cell Deployment Stories 2016Small Cell Forum
 

Recommandé

Low Latency Computing and 5G Networks - targeting the future
Low Latency Computing and 5G Networks - targeting the futureLow Latency Computing and 5G Networks - targeting the future
Low Latency Computing and 5G Networks - targeting the futurehubraum IoT Academy
 
Spider Cloud Wireless & Vodafone case studies
Spider Cloud Wireless & Vodafone case studiesSpider Cloud Wireless & Vodafone case studies
Spider Cloud Wireless & Vodafone case studiesSmall Cell Forum
 
SIGFOX Makers Tour - Dublin
SIGFOX Makers Tour - DublinSIGFOX Makers Tour - Dublin
SIGFOX Makers Tour - DublinNicolas Lesconnec
 
Internet of Things (IoT): Micro-location and Smart Buildings
Internet of Things (IoT): Micro-location and Smart BuildingsInternet of Things (IoT): Micro-location and Smart Buildings
Internet of Things (IoT): Micro-location and Smart BuildingsFaheem Zafari
 
Using lo rawan and vibration monitoring for predictive maintenance v2
Using lo rawan and vibration monitoring for predictive maintenance v2Using lo rawan and vibration monitoring for predictive maintenance v2
Using lo rawan and vibration monitoring for predictive maintenance v2Actility
 
Ignes lo ra - thierry lestable - 29102015 - vfinal
Ignes lo ra - thierry lestable - 29102015 - vfinalIgnes lo ra - thierry lestable - 29102015 - vfinal
Ignes lo ra - thierry lestable - 29102015 - vfinalThierry Lestable
 
Air finder Supertag Webinar
Air finder Supertag WebinarAir finder Supertag Webinar
Air finder Supertag WebinarBrian Ray
 
Small Cell Deployment Stories 2016
Small Cell Deployment Stories 2016Small Cell Deployment Stories 2016
Small Cell Deployment Stories 2016Small Cell Forum
 
Sigfox whitepaper
Sigfox whitepaperSigfox whitepaper
Sigfox whitepaperMarket Engel SAS
 
Exhibitor sessions: Gamma and Ruckus Wireless
Exhibitor sessions: Gamma and Ruckus WirelessExhibitor sessions: Gamma and Ruckus Wireless
Exhibitor sessions: Gamma and Ruckus WirelessJisc
 
IoT Platform Meetup - Sigfox
IoT Platform Meetup - SigfoxIoT Platform Meetup - Sigfox
IoT Platform Meetup - SigfoxFilip Kolář
 
Small Cell Forum State of the Market Workshop 2016
Small Cell Forum State of the Market Workshop 2016Small Cell Forum State of the Market Workshop 2016
Small Cell Forum State of the Market Workshop 2016Small Cell Forum
 
Low power wireless technologies for connecting embedded sensors in the IoT: A...
Low power wireless technologies for connecting embedded sensors in the IoT: A...Low power wireless technologies for connecting embedded sensors in the IoT: A...
Low power wireless technologies for connecting embedded sensors in the IoT: A...Gilles Callebaut
 
20180115 Mobile AIoT Networking-ftsai
20180115 Mobile AIoT Networking-ftsai20180115 Mobile AIoT Networking-ftsai
20180115 Mobile AIoT Networking-ftsaiFrank Chee-Da TSAI (蔡其達)
 
Evolving Architectures for Small Cells in the Enterprise
Evolving Architectures for Small Cells in the EnterpriseEvolving Architectures for Small Cells in the Enterprise
Evolving Architectures for Small Cells in the EnterpriseAndy Odgers
 
Internet of Things trifft auf Customer Intelligence
Internet of Things trifft auf Customer IntelligenceInternet of Things trifft auf Customer Intelligence
Internet of Things trifft auf Customer IntelligenceRising Media Ltd.
 
The Software2 Hub
The Software2 HubThe Software2 Hub
The Software2 HubCSUC - Consorci de Serveis Universitaris de Catalunya
 
El CCUC i el préstec interbibliotecari, les col·leccions especials i el GEPA
El CCUC i el préstec interbibliotecari, les col·leccions especials i el GEPAEl CCUC i el préstec interbibliotecari, les col·leccions especials i el GEPA
El CCUC i el préstec interbibliotecari, les col·leccions especials i el GEPACSUC - Consorci de Serveis Universitaris de Catalunya
 
Radiant Innovation - Helping You Uncover The Secrets of Everything.
Radiant Innovation - Helping You Uncover The Secrets of Everything.Radiant Innovation - Helping You Uncover The Secrets of Everything.
Radiant Innovation - Helping You Uncover The Secrets of Everything.David Lindop
 
BCN Analytics, an opportunity for Barcelona
BCN Analytics, an opportunity for BarcelonaBCN Analytics, an opportunity for Barcelona
BCN Analytics, an opportunity for BarcelonaCSUC - Consorci de Serveis Universitaris de Catalunya
 
Operational intelligence: Open discussion
Operational intelligence: Open discussionOperational intelligence: Open discussion
Operational intelligence: Open discussionCSUC - Consorci de Serveis Universitaris de Catalunya
 
Agència per a la Qualitat del Sistema Universitari de Catalunya
Agència per a la Qualitat del Sistema Universitari de CatalunyaAgència per a la Qualitat del Sistema Universitari de Catalunya
Agència per a la Qualitat del Sistema Universitari de CatalunyaCSUC - Consorci de Serveis Universitaris de Catalunya
 
Modelos de Cloud híbrido - Caso del CSUC y proveedores IaaS locales
Modelos de Cloud híbrido - Caso del CSUC y proveedores IaaS locales Modelos de Cloud híbrido - Caso del CSUC y proveedores IaaS locales
Modelos de Cloud híbrido - Caso del CSUC y proveedores IaaS locales CSUC - Consorci de Serveis Universitaris de Catalunya
 
Consortial library activities supporting the research in the universities of ...
Consortial library activities supporting the research in the universities of ...Consortial library activities supporting the research in the universities of ...
Consortial library activities supporting the research in the universities of ...CSUC - Consorci de Serveis Universitaris de Catalunya
 
Activitats del CSUC en matèria de gestió documental
Activitats del CSUC en matèria de gestió documentalActivitats del CSUC en matèria de gestió documental
Activitats del CSUC en matèria de gestió documentalCSUC - Consorci de Serveis Universitaris de Catalunya
 
Doing it together: spreading ORCID among Catalan universities and researchers
Doing it together: spreading ORCID among Catalan universities and researchersDoing it together: spreading ORCID among Catalan universities and researchers
Doing it together: spreading ORCID among Catalan universities and researchersCSUC - Consorci de Serveis Universitaris de Catalunya
 
Centro de datos sostenibles en Smart Cities, ¿realidad o ficción? Proyecto Eu...
Centro de datos sostenibles en Smart Cities, ¿realidad o ficción? Proyecto Eu...Centro de datos sostenibles en Smart Cities, ¿realidad o ficción? Proyecto Eu...
Centro de datos sostenibles en Smart Cities, ¿realidad o ficción? Proyecto Eu...CSUC - Consorci de Serveis Universitaris de Catalunya
 
The use of Splunk at CSUC
The use of Splunk at CSUCThe use of Splunk at CSUC
The use of Splunk at CSUCCSUC - Consorci de Serveis Universitaris de Catalunya
 
Near in the distance 2: A view from Barcelona
Near in the distance 2: A view from BarcelonaNear in the distance 2: A view from Barcelona
Near in the distance 2: A view from BarcelonaCSUC - Consorci de Serveis Universitaris de Catalunya
 
SIG-NOC Tools survey results
SIG-NOC Tools survey resultsSIG-NOC Tools survey results
SIG-NOC Tools survey resultsCSUC - Consorci de Serveis Universitaris de Catalunya
 

Contenu connexe

Tendances

Exhibitor sessions: Gamma and Ruckus Wireless
Exhibitor sessions: Gamma and Ruckus WirelessExhibitor sessions: Gamma and Ruckus Wireless
Exhibitor sessions: Gamma and Ruckus WirelessJisc
 
IoT Platform Meetup - Sigfox
IoT Platform Meetup - SigfoxIoT Platform Meetup - Sigfox
IoT Platform Meetup - SigfoxFilip Kolář
 
Small Cell Forum State of the Market Workshop 2016
Small Cell Forum State of the Market Workshop 2016Small Cell Forum State of the Market Workshop 2016
Small Cell Forum State of the Market Workshop 2016Small Cell Forum
 
Low power wireless technologies for connecting embedded sensors in the IoT: A...
Low power wireless technologies for connecting embedded sensors in the IoT: A...Low power wireless technologies for connecting embedded sensors in the IoT: A...
Low power wireless technologies for connecting embedded sensors in the IoT: A...Gilles Callebaut
 
Evolving Architectures for Small Cells in the Enterprise
Evolving Architectures for Small Cells in the EnterpriseEvolving Architectures for Small Cells in the Enterprise
Evolving Architectures for Small Cells in the EnterpriseAndy Odgers
 
Internet of Things trifft auf Customer Intelligence
Internet of Things trifft auf Customer IntelligenceInternet of Things trifft auf Customer Intelligence
Internet of Things trifft auf Customer IntelligenceRising Media Ltd.
 

Tendances (8)

Sigfox whitepaper
Sigfox whitepaperSigfox whitepaper
Sigfox whitepaper
 
Exhibitor sessions: Gamma and Ruckus Wireless
Exhibitor sessions: Gamma and Ruckus WirelessExhibitor sessions: Gamma and Ruckus Wireless
Exhibitor sessions: Gamma and Ruckus Wireless
 
IoT Platform Meetup - Sigfox
IoT Platform Meetup - SigfoxIoT Platform Meetup - Sigfox
IoT Platform Meetup - Sigfox
 
Small Cell Forum State of the Market Workshop 2016
Small Cell Forum State of the Market Workshop 2016Small Cell Forum State of the Market Workshop 2016
Small Cell Forum State of the Market Workshop 2016
 
Low power wireless technologies for connecting embedded sensors in the IoT: A...
Low power wireless technologies for connecting embedded sensors in the IoT: A...Low power wireless technologies for connecting embedded sensors in the IoT: A...
Low power wireless technologies for connecting embedded sensors in the IoT: A...
 
20180115 Mobile AIoT Networking-ftsai
20180115 Mobile AIoT Networking-ftsai20180115 Mobile AIoT Networking-ftsai
20180115 Mobile AIoT Networking-ftsai
 
Evolving Architectures for Small Cells in the Enterprise
Evolving Architectures for Small Cells in the EnterpriseEvolving Architectures for Small Cells in the Enterprise
Evolving Architectures for Small Cells in the Enterprise
 
Internet of Things trifft auf Customer Intelligence
Internet of Things trifft auf Customer IntelligenceInternet of Things trifft auf Customer Intelligence
Internet of Things trifft auf Customer Intelligence
 

En vedette

Radiant Innovation - Helping You Uncover The Secrets of Everything.
Radiant Innovation - Helping You Uncover The Secrets of Everything.Radiant Innovation - Helping You Uncover The Secrets of Everything.
Radiant Innovation - Helping You Uncover The Secrets of Everything.David Lindop
 

En vedette (20)

The Software2 Hub
The Software2 HubThe Software2 Hub
The Software2 Hub
 
El CCUC i el préstec interbibliotecari, les col·leccions especials i el GEPA
El CCUC i el préstec interbibliotecari, les col·leccions especials i el GEPAEl CCUC i el préstec interbibliotecari, les col·leccions especials i el GEPA
El CCUC i el préstec interbibliotecari, les col·leccions especials i el GEPA
 
Radiant Innovation - Helping You Uncover The Secrets of Everything.
Radiant Innovation - Helping You Uncover The Secrets of Everything.Radiant Innovation - Helping You Uncover The Secrets of Everything.
Radiant Innovation - Helping You Uncover The Secrets of Everything.
 
BCN Analytics, an opportunity for Barcelona
BCN Analytics, an opportunity for BarcelonaBCN Analytics, an opportunity for Barcelona
BCN Analytics, an opportunity for Barcelona
 
Operational intelligence: Open discussion
Operational intelligence: Open discussionOperational intelligence: Open discussion
Operational intelligence: Open discussion
 
Agència per a la Qualitat del Sistema Universitari de Catalunya
Agència per a la Qualitat del Sistema Universitari de CatalunyaAgència per a la Qualitat del Sistema Universitari de Catalunya
Agència per a la Qualitat del Sistema Universitari de Catalunya
 
Modelos de Cloud híbrido - Caso del CSUC y proveedores IaaS locales
Modelos de Cloud híbrido - Caso del CSUC y proveedores IaaS locales Modelos de Cloud híbrido - Caso del CSUC y proveedores IaaS locales
Modelos de Cloud híbrido - Caso del CSUC y proveedores IaaS locales
 
Consortial library activities supporting the research in the universities of ...
Consortial library activities supporting the research in the universities of ...Consortial library activities supporting the research in the universities of ...
Consortial library activities supporting the research in the universities of ...
 
Activitats del CSUC en matèria de gestió documental
Activitats del CSUC en matèria de gestió documentalActivitats del CSUC en matèria de gestió documental
Activitats del CSUC en matèria de gestió documental
 
Doing it together: spreading ORCID among Catalan universities and researchers
Doing it together: spreading ORCID among Catalan universities and researchersDoing it together: spreading ORCID among Catalan universities and researchers
Doing it together: spreading ORCID among Catalan universities and researchers
 
Centro de datos sostenibles en Smart Cities, ¿realidad o ficción? Proyecto Eu...
Centro de datos sostenibles en Smart Cities, ¿realidad o ficción? Proyecto Eu...Centro de datos sostenibles en Smart Cities, ¿realidad o ficción? Proyecto Eu...
Centro de datos sostenibles en Smart Cities, ¿realidad o ficción? Proyecto Eu...
 
The use of Splunk at CSUC
The use of Splunk at CSUCThe use of Splunk at CSUC
The use of Splunk at CSUC
 
Near in the distance 2: A view from Barcelona
Near in the distance 2: A view from BarcelonaNear in the distance 2: A view from Barcelona
Near in the distance 2: A view from Barcelona
 
SIG-NOC Tools survey results
SIG-NOC Tools survey resultsSIG-NOC Tools survey results
SIG-NOC Tools survey results
 
Catàlisi homogènia computacional: on érem i on volem anar
Catàlisi homogènia computacional: on érem i on volem anarCatàlisi homogènia computacional: on érem i on volem anar
Catàlisi homogènia computacional: on érem i on volem anar
 
From room for books to room for users: an old infantry barrack as an answer t...
From room for books to room for users: an old infantry barrack as an answer t...From room for books to room for users: an old infantry barrack as an answer t...
From room for books to room for users: an old infantry barrack as an answer t...
 
OpenNebula al CSUC
OpenNebula al CSUCOpenNebula al CSUC
OpenNebula al CSUC
 
Application Jukebox User Day: Users' experiencie: CSUC
Application Jukebox User Day: Users' experiencie: CSUCApplication Jukebox User Day: Users' experiencie: CSUC
Application Jukebox User Day: Users' experiencie: CSUC
 
Institut Català de Nanociència i Nanotecnologia
Institut Català de Nanociència i NanotecnologiaInstitut Català de Nanociència i Nanotecnologia
Institut Català de Nanociència i Nanotecnologia
 
Performing Arts Experiences in Academic Networks: Cocreation Workshop
Performing Arts Experiences in Academic Networks: Cocreation WorkshopPerforming Arts Experiences in Academic Networks: Cocreation Workshop
Performing Arts Experiences in Academic Networks: Cocreation Workshop
 

Similaire à SMARTxAC / Network Polygraph

From the Internet of Things to Intelligent Systems A Developer's Primer - Gar...
From the Internet of Things to Intelligent Systems A Developer's Primer - Gar...From the Internet of Things to Intelligent Systems A Developer's Primer - Gar...
From the Internet of Things to Intelligent Systems A Developer's Primer - Gar...Rick G. Garibay
 
Sdn future of networks
Sdn future of networksSdn future of networks
Sdn future of networksAhmed El-Sayed
 
Interoute VDC: Education from the cloud
Interoute VDC: Education from the cloudInteroute VDC: Education from the cloud
Interoute VDC: Education from the cloudjon_graham1977
 
Unveiling the Sydney IoT Landscape
Unveiling the Sydney IoT LandscapeUnveiling the Sydney IoT Landscape
Unveiling the Sydney IoT LandscapeAndrew Blades
 
High Scalability Network Monitoring for Communications Service Providers
High Scalability Network Monitoring for Communications Service ProvidersHigh Scalability Network Monitoring for Communications Service Providers
High Scalability Network Monitoring for Communications Service ProvidersCA Technologies
 
Design and Experiment Platform for Industrial Wireless Systems
Design and Experiment Platform for Industrial Wireless SystemsDesign and Experiment Platform for Industrial Wireless Systems
Design and Experiment Platform for Industrial Wireless SystemsRyan
 
RECAP at ETSI Experiential Network Intelligence (ENI) Meeting
RECAP at ETSI Experiential Network Intelligence (ENI) MeetingRECAP at ETSI Experiential Network Intelligence (ENI) Meeting
RECAP at ETSI Experiential Network Intelligence (ENI) MeetingRECAP Project
 
[Feb 2020] Cours IoT - CentraleSupelec - Master SIO
[Feb 2020] Cours IoT - CentraleSupelec - Master SIO[Feb 2020] Cours IoT - CentraleSupelec - Master SIO
[Feb 2020] Cours IoT - CentraleSupelec - Master SIONicolas Lesconnec
 
Janet Network R&D Innovation - HEAnet / Juniper Innovation Day
Janet Network R&D Innovation - HEAnet / Juniper Innovation DayJanet Network R&D Innovation - HEAnet / Juniper Innovation Day
Janet Network R&D Innovation - HEAnet / Juniper Innovation DayMartin Hamilton
 
Zeetta networks birmingham inca - sep2017
Zeetta networks birmingham inca - sep2017Zeetta networks birmingham inca - sep2017
Zeetta networks birmingham inca - sep2017James Saunby
 
Disaggregation, automation and autonomy in optical networking
Disaggregation, automation and autonomy in optical networkingDisaggregation, automation and autonomy in optical networking
Disaggregation, automation and autonomy in optical networkingADVA
 
Anti Hack Solution
Anti Hack Solution Anti Hack Solution
Anti Hack Solution Naved Ahmed
 
10 Steps to Architecting a Sustainable SCADA System
10 Steps to Architecting a Sustainable SCADA System10 Steps to Architecting a Sustainable SCADA System
10 Steps to Architecting a Sustainable SCADA SystemInductive Automation
 
From the Internet of Things to Intelligent Systems: A Developer's Primer
From the Internet of Things to Intelligent Systems: A Developer's PrimerFrom the Internet of Things to Intelligent Systems: A Developer's Primer
From the Internet of Things to Intelligent Systems: A Developer's PrimerRick G. Garibay
 
5g, gpu and fpga
5g, gpu and fpga5g, gpu and fpga
5g, gpu and fpgaRichard Kuo
 

Similaire à SMARTxAC / Network Polygraph (20)

From the Internet of Things to Intelligent Systems A Developer's Primer - Gar...
From the Internet of Things to Intelligent Systems A Developer's Primer - Gar...From the Internet of Things to Intelligent Systems A Developer's Primer - Gar...
From the Internet of Things to Intelligent Systems A Developer's Primer - Gar...
 
Sdn future of networks
Sdn future of networksSdn future of networks
Sdn future of networks
 
Interoute VDC: Education from the cloud
Interoute VDC: Education from the cloudInteroute VDC: Education from the cloud
Interoute VDC: Education from the cloud
 
Unveiling the Sydney IoT Landscape
Unveiling the Sydney IoT LandscapeUnveiling the Sydney IoT Landscape
Unveiling the Sydney IoT Landscape
 
High Scalability Network Monitoring for Communications Service Providers
High Scalability Network Monitoring for Communications Service ProvidersHigh Scalability Network Monitoring for Communications Service Providers
High Scalability Network Monitoring for Communications Service Providers
 
Internet of Things
Internet of ThingsInternet of Things
Internet of Things
 
SCADA
SCADASCADA
SCADA
 
Design and Experiment Platform for Industrial Wireless Systems
Design and Experiment Platform for Industrial Wireless SystemsDesign and Experiment Platform for Industrial Wireless Systems
Design and Experiment Platform for Industrial Wireless Systems
 
RECAP at ETSI Experiential Network Intelligence (ENI) Meeting
RECAP at ETSI Experiential Network Intelligence (ENI) MeetingRECAP at ETSI Experiential Network Intelligence (ENI) Meeting
RECAP at ETSI Experiential Network Intelligence (ENI) Meeting
 
Flash Talks, 7th SIG-NOC Meeting
Flash Talks, 7th SIG-NOC MeetingFlash Talks, 7th SIG-NOC Meeting
Flash Talks, 7th SIG-NOC Meeting
 
[Feb 2020] Cours IoT - CentraleSupelec - Master SIO
[Feb 2020] Cours IoT - CentraleSupelec - Master SIO[Feb 2020] Cours IoT - CentraleSupelec - Master SIO
[Feb 2020] Cours IoT - CentraleSupelec - Master SIO
 
Multitel Cybersecurity Projects
Multitel Cybersecurity ProjectsMultitel Cybersecurity Projects
Multitel Cybersecurity Projects
 
Feec telecom-nw-softwarization-aug-2015
Feec telecom-nw-softwarization-aug-2015Feec telecom-nw-softwarization-aug-2015
Feec telecom-nw-softwarization-aug-2015
 
Janet Network R&D Innovation - HEAnet / Juniper Innovation Day
Janet Network R&D Innovation - HEAnet / Juniper Innovation DayJanet Network R&D Innovation - HEAnet / Juniper Innovation Day
Janet Network R&D Innovation - HEAnet / Juniper Innovation Day
 
Zeetta networks birmingham inca - sep2017
Zeetta networks birmingham inca - sep2017Zeetta networks birmingham inca - sep2017
Zeetta networks birmingham inca - sep2017
 
Disaggregation, automation and autonomy in optical networking
Disaggregation, automation and autonomy in optical networkingDisaggregation, automation and autonomy in optical networking
Disaggregation, automation and autonomy in optical networking
 
Anti Hack Solution
Anti Hack Solution Anti Hack Solution
Anti Hack Solution
 
10 Steps to Architecting a Sustainable SCADA System
10 Steps to Architecting a Sustainable SCADA System10 Steps to Architecting a Sustainable SCADA System
10 Steps to Architecting a Sustainable SCADA System
 
From the Internet of Things to Intelligent Systems: A Developer's Primer
From the Internet of Things to Intelligent Systems: A Developer's PrimerFrom the Internet of Things to Intelligent Systems: A Developer's Primer
From the Internet of Things to Intelligent Systems: A Developer's Primer
 
5g, gpu and fpga
5g, gpu and fpga5g, gpu and fpga
5g, gpu and fpga
 

Plus de CSUC - Consorci de Serveis Universitaris de Catalunya

Plus de CSUC - Consorci de Serveis Universitaris de Catalunya (20)

Tendencias en herramientas de monitorización de redes y modelo de madurez en ...
Tendencias en herramientas de monitorización de redes y modelo de madurez en ...Tendencias en herramientas de monitorización de redes y modelo de madurez en ...
Tendencias en herramientas de monitorización de redes y modelo de madurez en ...
 
Quantum Computing Master Class 2024 (Quantum Day)
Quantum Computing Master Class 2024 (Quantum Day)Quantum Computing Master Class 2024 (Quantum Day)
Quantum Computing Master Class 2024 (Quantum Day)
 
Publicar dades de recerca amb el Repositori de Dades de Recerca
Publicar dades de recerca amb el Repositori de Dades de RecercaPublicar dades de recerca amb el Repositori de Dades de Recerca
Publicar dades de recerca amb el Repositori de Dades de Recerca
 
In sharing we trust. Taking advantage of a diverse consortium to build a tran...
In sharing we trust. Taking advantage of a diverse consortium to build a tran...In sharing we trust. Taking advantage of a diverse consortium to build a tran...
In sharing we trust. Taking advantage of a diverse consortium to build a tran...
 
Formació RDM: com fer un pla de gestió de dades amb l’eiNa DMP?
Formació RDM: com fer un pla de gestió de dades amb l’eiNa DMP?Formació RDM: com fer un pla de gestió de dades amb l’eiNa DMP?
Formació RDM: com fer un pla de gestió de dades amb l’eiNa DMP?
 
Com pot ajudar la gestió de les dades de recerca a posar en pràctica la ciènc...
Com pot ajudar la gestió de les dades de recerca a posar en pràctica la ciènc...Com pot ajudar la gestió de les dades de recerca a posar en pràctica la ciènc...
Com pot ajudar la gestió de les dades de recerca a posar en pràctica la ciènc...
 
Security Human Factor Sustainable Outputs: The Network eAcademy
Security Human Factor Sustainable Outputs: The Network eAcademySecurity Human Factor Sustainable Outputs: The Network eAcademy
Security Human Factor Sustainable Outputs: The Network eAcademy
 
The Research Portal of Catalonia: Growing more (information) & more (services)
The Research Portal of Catalonia: Growing more (information) & more (services)The Research Portal of Catalonia: Growing more (information) & more (services)
The Research Portal of Catalonia: Growing more (information) & more (services)
 
Facilitar la gestión, visibilidad y reutilización de los datos de investigaci...
Facilitar la gestión, visibilidad y reutilización de los datos de investigaci...Facilitar la gestión, visibilidad y reutilización de los datos de investigaci...
Facilitar la gestión, visibilidad y reutilización de los datos de investigaci...
 
La gestión de datos de investigación en las bibliotecas universitarias españolas
La gestión de datos de investigación en las bibliotecas universitarias españolasLa gestión de datos de investigación en las bibliotecas universitarias españolas
La gestión de datos de investigación en las bibliotecas universitarias españolas
 
Disposes de recursos il·limitats? Prioritza estratègicament els teus projecte...
Disposes de recursos il·limitats? Prioritza estratègicament els teus projecte...Disposes de recursos il·limitats? Prioritza estratègicament els teus projecte...
Disposes de recursos il·limitats? Prioritza estratègicament els teus projecte...
 
Les persones i les seves capacitats en el nucli de la transformació digital. ...
Les persones i les seves capacitats en el nucli de la transformació digital. ...Les persones i les seves capacitats en el nucli de la transformació digital. ...
Les persones i les seves capacitats en el nucli de la transformació digital. ...
 
Enginyeria Informàtica: una cursa de fons
Enginyeria Informàtica: una cursa de fonsEnginyeria Informàtica: una cursa de fons
Enginyeria Informàtica: una cursa de fons
 
Transformació de rols i habilitats en un món ple d'IA
Transformació de rols i habilitats en un món ple d'IATransformació de rols i habilitats en un món ple d'IA
Transformació de rols i habilitats en un món ple d'IA
 
Difusió del coneixement a l'Il·lustre Col·legi de l'Advocacia de Barcelona
Difusió del coneixement a l'Il·lustre Col·legi de l'Advocacia de BarcelonaDifusió del coneixement a l'Il·lustre Col·legi de l'Advocacia de Barcelona
Difusió del coneixement a l'Il·lustre Col·legi de l'Advocacia de Barcelona
 
Fons de discos perforats de cartró
Fons de discos perforats de cartróFons de discos perforats de cartró
Fons de discos perforats de cartró
 
Biblioteca Digital Gencat
Biblioteca Digital GencatBiblioteca Digital Gencat
Biblioteca Digital Gencat
 
El fons Enrique Tierno Galván: recepció, tractament i difusió
El fons Enrique Tierno Galván: recepció, tractament i difusióEl fons Enrique Tierno Galván: recepció, tractament i difusió
El fons Enrique Tierno Galván: recepció, tractament i difusió
 
El CIDMA: més enllà dels espais físics
El CIDMA: més enllà dels espais físicsEl CIDMA: més enllà dels espais físics
El CIDMA: més enllà dels espais físics
 
Els serveis del CSUC per a la comunitat CCUC
Els serveis del CSUC per a la comunitat CCUCEls serveis del CSUC per a la comunitat CCUC
Els serveis del CSUC per a la comunitat CCUC
 

Dernier

A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)Gabriella Davis
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxMalak Abu Hammad
 
How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonetsnaman860154
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreternaman860154
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountPuma Security, LLC
 
Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Enterprise Knowledge
 
Real Time Object Detection Using Open CV
Real Time Object Detection Using Open CVReal Time Object Detection Using Open CV
Real Time Object Detection Using Open CVKhem
 
Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024The Digital Insurer
 
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfThe Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfEnterprise Knowledge
 
A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?Igalia
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc
 
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptxEIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptxEarley Information Science
 
Slack Application Development 101 Slides
Slack Application Development 101 SlidesSlack Application Development 101 Slides
Slack Application Development 101 Slidespraypatel2
 
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Servicegiselly40
 
Factors to Consider When Choosing Accounts Payable Services Providers.pptx
Factors to Consider When Choosing Accounts Payable Services Providers.pptxFactors to Consider When Choosing Accounts Payable Services Providers.pptx
Factors to Consider When Choosing Accounts Payable Services Providers.pptxKatpro Technologies
 
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsMaria Levchenko
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slidevu2urc
 
Advantages of Hiring UIUX Design Service Providers for Your Business
Advantages of Hiring UIUX Design Service Providers for Your BusinessAdvantages of Hiring UIUX Design Service Providers for Your Business
Advantages of Hiring UIUX Design Service Providers for Your BusinessPixlogix Infotech
 
Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024The Digital Insurer
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Miguel Araújo
 

Dernier (20)

A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptx
 
How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonets
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreter
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path Mount
 
Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...
 
Real Time Object Detection Using Open CV
Real Time Object Detection Using Open CVReal Time Object Detection Using Open CV
Real Time Object Detection Using Open CV
 
Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024
 
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfThe Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
 
A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
 
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptxEIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
 
Slack Application Development 101 Slides
Slack Application Development 101 SlidesSlack Application Development 101 Slides
Slack Application Development 101 Slides
 
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Service
 
Factors to Consider When Choosing Accounts Payable Services Providers.pptx
Factors to Consider When Choosing Accounts Payable Services Providers.pptxFactors to Consider When Choosing Accounts Payable Services Providers.pptx
Factors to Consider When Choosing Accounts Payable Services Providers.pptx
 
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed texts
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slide
 
Advantages of Hiring UIUX Design Service Providers for Your Business
Advantages of Hiring UIUX Design Service Providers for Your BusinessAdvantages of Hiring UIUX Design Service Providers for Your Business
Advantages of Hiring UIUX Design Service Providers for Your Business
 
Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
 

SMARTxAC / Network Polygraph

  • 1. SMARTxAC / Network Polygraph “A Network Visibility Service born at Anella Científica” Maria Isabel Gandía – mariaisabel.gandia@csuc.cat Josep Sanjuas – jsanjuas@polygraph.io
  • 2. Companies depend on Networks e-mail, databases, shared folders, VoIP, cloud...
  • 3. Networks are complex and hard to manage
  • 4. Network Downtime equals Cost $42,000/h avg cost of downtime $5,600/min avg cost of downtime (datacenters) 87 hours avg downtime per year 200 min MTTR per medium outage itpi
  • 5. Network Visibility • To properly manage a network, you need to see what happens inside it • First step to... – identify congested links – remove unwanted network traffic – disconnect bandwidth hogs – troubleshoot performance issues – plan for future needs
  • 7. Network Visibility Technologies • Hardware-based («Deep Packet Inspection») – Brute-force approach: inspect all packets – High visibility, but very high cost • Software-based (NetFlow, SNMP) – Use traffic statistics exported by routers – Mid visibility & low cost
  • 8. Network Polygraph - Technology • Best of both worlds: high visibility, low cost • How? NetFlow + artificial intelligence NetFlow on steroids: application identification, SSL domain ID, attack & anomaly detection capabilities
  • 9. History: SMARTxAC to Polygraph Commercial Internet
  • 10. 1999-2003: Inception  Previous monitoring and analysis projects: • CASTBA • MEHARI • MIRA  With the colaboración among several universities • UPM (Universidad Politécnica de Madrid) • UC3M (Universidad Carlos III de Madrid) • UPC (Universitat Politècnica de Catalunya)  And the participation of: • RedIRIS • CESCA • Telefónica Investigación y Desarrollo • Institut Català de Tecnologia  Focus: monitoring ATM networks  Approach: deep packet inspection with sampling
  • 11. 2003: The Birth of SMARTxAC Collaboration: CESCA + CCABA/UPC Objective: monitoring Anella Cientifica-RedIRIS connection Roles • CESCA: requirements, testbed • CCABA/UPC: research, development Objectives: • Low-cost platform • Continuously monitor Anella Científica • Detect anomalies and irregular usage • Multi-tenant: accessible by many institutions – each institution can see their own traffic only
  • 12. 2003: Architecture Optical Spitter Capture Endace DAG card Analysis
  • 13. 2003: User Interface Port Number Machine learning 47.39% 0.10% 0.43% 10.34% 19.65% 7.97% 2.48% 0.08% 0.55% 1.84% 2.26% 0.10% 0.53% 6.04% 0.23% 40.07% 2.97% 2.43% 18.47% 8.17% 0.30% 1.52% 0.48% 9.67% 1.22% 0.51% 0.30% 8.48% 5.42% A_UKNWN DNS FTP GAMES IRC MAIL MULTIMEDIA NETFS NETWORK NEWS NO_TCPUDP OTHERS P2P T_UKNWN TELNET UNIX WWW
  • 14. 2003-2011: Network Scales Up More network interfaces monitored at Anella Científica: • RedIRIS • Commercial internet connection • CATNIX  Internal traffic not monitored Increasing bandwidth usage Realization: DPI is not cost effective! Last straw: switching to 10Gbps links  Distributed core with to main nodes (Campus Nord & Telvent) Solution: NetFlow
  • 15. 2011: Upgrade to 10Gbps - NetFlow 2x10Gbps NetFlow Flow-based analysis
  • 17. 2013: Commercial Stage & Spin-off • Research group gathers commercial interest • Received public funding for tech transfer – SMARTxAC to generalized product • From a research product to a commercial one – Talaia Networks, S.L.: a spin-off of UPC – Network Polygraph: «spin-off of SMARTxAC»
  • 19. Deployment Models: Cloud Customer Network Cloud
  • 20. Deployment Models: On-Premises Customer’s Datacenter
  • 21. Multi-Tenancy Module Customer A Customer B Customer C
  • 22. Subscription Models Service (SaaS) • Monthly or yearly billing • Includes support • Externally managed • Regularly updated Perpetual License • Payable upfront • Support & maintenance fee • Not accessible by our personnel
  • 23. The SaaS Advantage • No upfront costs for end customer – Lower barrier of entry (esp. small-mid customers) – No need to “commit” to our solution – Simply configure routers to send NetFlow to us • Managed solution – Zero maintenance, zero hardware, zero software – Always upgraded to latest version
  • 24. Main Large-scale Deployments • CSUC (Anella Científica network) – Connects ≈90 public institutions in Catalonia – Offered as value-added service to >80 admins • Red.es (RedIRIS network) – Handles all Spanish academic network traffic – Connects ≈450 public institutions in Spain – Won as customer in competitive tender
  • 25. Use Cases • Small-medium companies – Bandwidth is a precious resource, Polygraph helps optimize its usage • “Why is the network so slow? Should we invest in more bandwidth?” • Found 1 user constantly downloading files from Mega • Link was shared with other offices, affecting whole company
  • 26. Use Cases (2) • Large companies – Moving a single “hardware DPI probe” around • Deploying full DPI was too expensive • With Polygraph they could cover all branches! – Realized most attacks come from China • ISP can block certain IP subnets • Attacks do not consume customer bandwidth – Detected covert bitcoin mining operations • Users were pumping the electricity bill for their personal gain
  • 27. Use Cases (3) • ISP & Managed Network Service Providers – Important customer with an office in North Africa: • Bandwidth: precious resource • Wanted to check it is spent wisely – no unwanted traffic – Receiving large # of copyright violation notices!? • Traffic analysis reveals P2P traffic • Particularly, upstream traffic: serving illegal content! – Use our product to detect network attacks • Offer product as value-added service to corporate customers • Sell anti-virus solutions to their own customers
  • 28. Deployment at CATNIX: Proposal Member A Member B Member C
  • 29. Website + On-Line Demo https://polygraph.io
  • 30. Network Polygraph Talaia Networks, S.L. K2M – Parc UPC Campus Nord Jordi Girona, 1-3 Barcelona (08034) Spain Telephone: +34 93 405 45 87 contact@polygraph.io https://polygraph.io
  • 31. traffic volume, breakdown by application
  • 33. top talkers (addresses, ports, autonomous systems)
  • 35. anomaly and attack detection with automatic baselining
  • 36. indexed traffic database for forensic analysis