Scribd
Upload
40 views2 pages

Data Sheet Pace

PACE is a software library that uses deep packet inspection (DPI) technologies like pattern matching and statistical analysis to detect network protocols and applications in real-time. It can be integrated into firewalls, security appliances, and lawful interception systems. PACE provides high performance protocol detection of over 1,000 applications and 200 protocols at throughput of up to 100 Gbit/s. It extracts metadata from traffic like HTTP host names and SIP caller IDs.

Uploaded by

Amy Li
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
40 views2 pages

Data Sheet Pace

PACE is a software library that uses deep packet inspection (DPI) technologies like pattern matching and statistical analysis to detect network protocols and applications in real-time. It can be integrated into firewalls, security appliances, and lawful interception systems. PACE provides high performance protocol detection of over 1,000 applications and 200 protocols at throughput of up to 100 Gbit/s. It extracts metadata from traffic like HTTP host names and SIP caller IDs.

Uploaded by

Amy Li
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 2

Data sheet

PACE
Protocol & Application Classification Engine

ipoque’s Protocol and Application Classification Engine (PACE) is a software library using deep packet inspection (DPI) tech-
nologies – including pattern matching and behavioral, heuristic and statistical analysis in real-time – to reliably detect net-
work protocols, even if they use advanced obfuscation and encryption techniques. It helps network equipment vendors en-
hance their products with powerful and proven Layer 7 protocol network management and visibility capabilities. In addition,
it accelerates time-to-market for a variety of different application scenarios. PACE consists of fully configurable DPI software
and has been optimized for performance and classification reliability. It is highly flexible and can be integrated in any existing
platform such as firewalls, network security and policy management appliances, and lawful interception systems.

Flexible Integration Performance Highlights

• Independent of hardware architecture/ • Developed entirely in C Real-time detection rate with near
100% reliability
endianness • Throughput of up to 100 Gbit/s and faster
• Runs in any Linux, Mac, Solaris and Windows (SMP support) Support for thousands of applications
environment • Optimized code for high-end multicore
• 100% proprietary code provides clean technology High performance for core network links
licensing without GPL compliance issues • Multithreading provides linear scalability on with speeds of up to 100 Gbit/s and faster
• User-defined connection/session tracking multi-core systems
Metadata Extraction
• Fully documented APIs, including code • Includes ipoque’s proven Fastpath engine for
samples even faster detection without impacting Flexible and seamless integration in various
• Includes ipoque’s powerful network traffic reliable detection rate network products
test tool with a wide range of options • Integrated highly-optimized flow tracking for
millions of concurrent connections Continuous up-to-date support for the
latest protocols

www.ipoque.com
Advanced Deep Packet Inspection Application Scenarios Pace at a Glance

• Application detection coupled with proven Next-Generation Firewalls & Superiority


Layer 7 protocol detection (e.g. Facebook, WAN Optimization Controllers (WOC) • L7 protocol detection combines different
Twitter & Dropbox) Reliably classify network protocols and applica- DPI technologies
• Subtype detection of application clients such tions – independent of TCP and UDP ports – • Throughput for deployment of 100
as audio, video or file transfer allows deeper for network access control. DPI is a commitment Gbit/s and more
insight to maximum network security and a powerful • Flexible and seamless integration
• Support for thousands of applications and basis for individual company security policies.
over 200 real network protocols Boost the acceleration of applications for par- Reliability
• Extraction of application and protocol ticular needs, e.g. e-mail, VoIP, SIP. • Supports over 1000 applications
metadata • Includes more than 200 network
Traffic Analysis, Accounting & protocols
PACE - Beyond Protocol Detection Billing Systems
• Seamless and dynamic online upgrade Collect detailed statistics based on actual Precision
without rebooting protocol and application usage for network • Detection rate of nearly 100%
• Automatically decapsulates tunneling resource planning, billing and accounting. • Extremely low classification rate for
protocols with arbitrary encapsulation depth Identify and estimate network trends based on false positives
• IP defragmentation and TCP packet long-term analysis, e.g. adjustments of data
reordering included rate plans. Enables you to respond immediately Responsiveness
• Bidirectional and unidirectional traffic to changes within your network. • Frequent classification updates
identification • Swift delivery of popular and important
• Flow and subscriber tracking Bandwidth Management & protocols
• Frequent updates of protocol and application Policy Enforcement
detection ensure reliable detection Network bandwidth management provides
quality of service (QoS) in fixed-line and mobile Excerpt of Supported Environments
Custom Defined Protocols networks with bandwidth priorities, guarantees • Operating Systems / Distributions
• Ready-to-use PACE extension for defining and caps on a per protocol and per application - Linux Standard Base
your own protocols and applications basis. The integration of DPI allows prompt - Berkeley Software Distribution (BSD), e.g.
• Implementation of individual needs, identification of challenges based on increas- MAC OS X, FreeBSD
independent of existing signature database ing over-the-top traffic (OTT). This improves - Solaris
• Customization of existing protocol and network operator profitability and creates new - Windows
application detection streams of revenue. Network environment as- • CPU Architectures
surance, e.g. protection against DDoS attacks, - x86: x86_32 (IA-32), x86_64 (AMD64)
Metadata Extraction is included. - RISC: MIPS (e.g. Cavium Octeon) and SPARC
• Integrated metadata extraction as a subset (e.g. UltraSPARC)
of PADE, ipoque’s decoding engine/Excerpt: Lawful Interception
- HTTP (e.g. host, content, user agent) Reliably classify intercepted traffic for nega-
- SSL (e.g. serial, country, address, tive and positive filtering, protocol-based load
organization name) balancing and improved post-processing. Real-
- SIP (e.g. sender, receiver, caller-ID) time support for key communication technolo-
gies such as VoIP and e-mail.
QoS/QoE: Measurements
• Statistical traffic measurements
(e.g. SYN/ACK to ACK round-trip time and TCP
out-of-order counter)
• VoIP performance measurements
(e.g. jitter and packet loss rate)

PACE – Protocol & Application Classification Engine


Application Scenarios
• Next generation firewalls/WOC
API
• Traffic analysis & billings system
• Bandwidth management
Network • Policy enforcement
Pre-Processing
• Packet Reordering Engine Connection & • Lawful interception
DPI Classification
• IP Defragmentation Engine Subscriber Tracking

ipoque GmbH, Neumarkt 29-33, 04109 Leipzig, Germany www.ipoque.com © 2012 ipoque GmbH
Phone: +49 341 59403 0 Fax: +49 341 59403 019 [email protected] PACE 1208

You might also like