Search results

  1. Nowhere to hide: Using deep packet inspection for threat detection

    Sudden changes in application speeds and latencies can indicate a cyberattack. This article discusses how threat detection can be augmented with deep packet inspection. It looks at how granular, application-level and service-level insights from DPI can be built into an enterprise’s threat detection system for highly accurate and reliable identification of malicious, suspicious and anomalous traffic.

    Blog post

  2. Orsec Technologies SAS embeds R&S®PACE 2

    "The content and metadata extracted from traffic flows by the DPI engine R&S®PACE 2 provides a rich information feed we use to boost our machine learning for user and device behavior analytics. This empowers our solution to [...]

    Success Story

  3. How advanced traffic identification complements honeypot networks

    Honeypot networks are fake IT systems used to bait cyberattackers, learn from them and consequently improve actual cybersecurity. They are designed with a well-placed vulnerability to attract hackers. Once a hacker is in the network, the honeypot allows for monitoring and analyzing the malicious activity. For such networks, deep packet inspection is a great asset. It identifies malicious activity almost instantaneously, helping honeypot networks to detect threats as soon as they enter the network.

    Blog post

  4. DPI conquers encrypted traffic with machine learning and deep learning

    Encryption keeps packets obscure and safe, but it also poses various visibility and monitoring challenges for network operators. In an encrypted world, how can they maintain accurate traffic visibility and classification for reliable threat detection and network management? The answer is Encrypted Traffic Intelligence (ETI). By incorporating machine learning and deep learning, the DPI engine R&S®PACE 2 is able to deliver this intelligence, providing application awareness for encrypted, obfuscated or anonymized traffic.

    Blog post

  5. Security Service Edge (SSE) and DPI: Converged security meets advanced traffic awareness

    Security Service Edge (SSE) provides a flexible yet scalable solution for implementing fine-grained access control for enterprise applications and for securing them against malicious activity. In a unified, single-pass SSE architecture, deep packet inspection enables a single, yet powerful point for traffic inspection that equips CASB, SWG, FWaaS, DNS, DLP and WAAPaaS with the information necessary to filter traffic effectively, block malicious sites and safeguard valuable enterprise data. Learn more about SSE and how it benefits from DPI in this article.

    Blog post

  6. DPI for ZTNA and SSE: Killing two birds with one stone

    By providing real-time traffic intelligence, DPI creates a continuous adaptive context for user access policies, significantly increasing the security, intelligence, and efficiency of SSE components such as CASB, SWG and FWaaS, DPL, and SSL. This DPI-driven approach not only strengthens network access controls, but also reduces the workload of various tools, ensuring better cloud-based security outcomes and faster threat response.

    Blog post

  7. DPI-enhanced CASB for tighter security in the cloud

    As a middleman negotiating traffic flows between users on the ground and applications in the cloud, the importance of the cloud access security broker (CASB) continues to grow. But to be able to provide real-time insights, end-to-end visibility and accurate detection of threats and anomalies, DPI engines such as R&S®PACE 2 are a critical addition. By combining the capabilities of both the CASB and DPI, enterprises are sure to be safe as they move their work to the cloud.

    Blog post

  8. How subscriber awareness augments mobile network security

    Conventional load balancing across mobile networks leaves network security functions with huge visibility gaps. Furthermore, in the context of 5G, the need for higher bandwidth and speeds across applications that are data-intensive and that connect to multiple end nodes simultaneously poses new challenges for operators. R&S®GSRM in combination with R&S®PACE 2 delivers deeper, more granular insights into the risks and vulnerabilities that are present in a mobile network. Operators benefit from enhanced network intelligence to manage and improve mobile network security.

    Blog post

  9. Close-up in the cloud: How micro-segmentation benefits from DPI

    Micro-segmentation segregates networks into smaller VLANs or subnets that are accorded their own security functionalities to safeguard cloud applications from laterally moving threats that typically afflict virtual machines and containers in the cloud. The use of DPI in micro-segmentation can greatly aid in securing applications in the cloud or specifically distributed workloads hosted on virtual machines and containers.

    Blog post

  10. DPI-powered machine learning for network monitoring software

    Protecting your company’s information from data breaches is an ever-present security concern. Data breaches are all the more serious for small and medium companies who cannot afford a dedicated IT security team. oorigin® by Orsec Technologies incorporates the analytics capabilities of R&S®PACE 2 for a faster and more efficient detection of cyberthreats. Thus, Orsec Technologies is able to offer a high-class product at a price affordable for small and medium companies.

    Case Study