Friday, May 17, 2013

U.S. Department of State RFI for DPI

The U.S. Department of State (DoS) is in ".. search of potential sources for Deep Packet Capture and Inspection (DPCI). The scope of the envisioned Deep Packet Capture and Inspection (DPCI) solution is to provide the following high-level functionality:
  1. Capture 100 % of all network packets traversing the borders of the DoS’ Points of Presence (POPs).
  2. Perform rapid classification and analysis of these packets, for access by DoS security analysts.
  3. Recall only selected network packets for an analyst, to reconstruct a session of interest.
  4. Filter on packets of interest, to allow for investigating whether malcode is attempting to be infiltrated into the network.
  5. Create many sorts of queries and automated alerting on the collected packets, either ad hoc or predefined, to discover anomalous network traffic.
  6. Generate both low-level and high-level reports on network traffic based on a wide range of criteria, such as time period, source and/or destination IP address, IPv4 and IPv6 protocols and ports, Internet domains, and e-mail addresses.
One critical item to note is that the current 2 gigabit-per-second (Gbps, 2048 megabits-per-second) throughput at each of the network borders is slated to be increased to 10 Gbps in the near term. This means that the DPCI solution must be able to ingest packets coming from a 10 Gbps fiber interface"

See "Deep Packet Capture and Inspection" - here.

No comments:

Post a Comment