-
7/28/2019 4_200702-ISS-DXB-ATIS3.pdf
1/18
Target and ServiceTarget and ServiceBased Interception inBased Interception in
an IP Environmentan IP Environment
Alessandro Guida
ATIS systems GmbH
ISS World Dubai 26.02.2007
-
7/28/2019 4_200702-ISS-DXB-ATIS3.pdf
2/18
What are my messages?What are my messages?
IP interception and monitoringIP interception and monitoring End-to-end is betterEnd-to-end is better
But it can be difficultBut it can be difficult Cost for network operatorsCost for network operators Content usability for LEAContent usability for LEA
KlariosKlariosmakes it easiermakes it easierA solution for day-to-day challengesA solution for day-to-day challenges
-
7/28/2019 4_200702-ISS-DXB-ATIS3.pdf
3/18
-
7/28/2019 4_200702-ISS-DXB-ATIS3.pdf
4/18
-
7/28/2019 4_200702-ISS-DXB-ATIS3.pdf
5/18
KLARIOSKLARIOSAIMS-PSAIMS-PSAdministration FunctionAdministration Function
Administration of users and rolesAdministration of users and roles
Reporting and loggingReporting and logging
Topology managementTopology management
Interception managementInterception management Warrant administrationWarrant administration
Filter administrationFilter administration Interception provisioningInterception provisioning
Topology AdministrationTopology Administration
Filter AdministrationFilter Administration
-
7/28/2019 4_200702-ISS-DXB-ATIS3.pdf
6/18
IP Interception and MonitoringIP Interception and Monitoring
End-to-End is BetterEnd-to-End is Better (2)(2)
-
7/28/2019 4_200702-ISS-DXB-ATIS3.pdf
7/18
KLARIOSKLARIOSAIMS-PSAIMS-PSInterception Access PointsInterception Access Points
ISP EquipmentLI Dedicated
IPLayer
Application
Routers
Switches
Sniffer
RadiusServer
EmailProxy
Radius/DHCP Proxy MailServer
ProtocolAnalyser
NAS
Aggregation
Level Router
Ethernet
Hub
Probe NAS
Aggregation
Level Router
ProbeNAS
Aggregation
Level Router
Probe
HUB ModeHUB Mode Mirroring PortMirroring PortNetwork TapNetwork Tap Proxy ModeProxy Mode
Issues to keep in mind:Issues to keep in mind: Supported applicationsSupported applications
Filter functionsFilter functions
ThroughputThroughput
Delivery formatsDelivery formats
SecuritySecurity Connection to networkConnection to network
-
7/28/2019 4_200702-ISS-DXB-ATIS3.pdf
8/18
IP Interception and MonitoringIP Interception and Monitoring
End-to-End is BetterEnd-to-End is Better (3)(3)
-
7/28/2019 4_200702-ISS-DXB-ATIS3.pdf
9/18
Mediation functionsMediation functions
Integration of IAPsIntegration of IAPs
Specific gateway InterfacesSpecific gateway Interfaces(ETSI, CALEA, SORM(ETSI, CALEA, SORM.).)
Filter functionsFilter functions
Export functionsExport functions
KLARIOSKLARIOSAIMS-PSAIMS-PSMediation DeviceMediation Device
-
7/28/2019 4_200702-ISS-DXB-ATIS3.pdf
10/18
IP Interception and MonitoringIP Interception and Monitoring
End-to-End is BetterEnd-to-End is Better (4)(4)
-
7/28/2019 4_200702-ISS-DXB-ATIS3.pdf
11/18
KLARIOSKLARIOS IP Monitoring CentreIP Monitoring Centre
-
7/28/2019 4_200702-ISS-DXB-ATIS3.pdf
12/18
KLARIOSKLARIOS IP Monitoring CentreIP Monitoring CentreContent DecodingContent Decoding
Source Address
Destination Address
Header ChecksumTTL Protocol
Identification Flags Fragment Offset
Total LenghtTOSIHLVersion
Payload
Option + Padding
IPPack
et
IPHeader
IPPayload
Source Port Destination Port
Sequence Number
Acknowledgement Number
Data
TCPPayload
TC
PPacket
TCPHead
er
HTTPMes
sage
HTTP Start Line
Generic HeadersMethod HeadersEntity Headers
Message Trailer
Message Body
-
7/28/2019 4_200702-ISS-DXB-ATIS3.pdf
13/18
KLARIOSKLARIOS IP Monitoring CentreIP Monitoring CentreContent Processing and AnalysisContent Processing and Analysis
-
7/28/2019 4_200702-ISS-DXB-ATIS3.pdf
14/18
Google
...
...
alt=Google src="Google-Dateien/logo.gif"
...
HTTP/1.1 200 OK
...
Content-Type: text/html
logo.gif
HTTP/1.1 200 OK
...
Content-Type: image/gif
KLARIOSKLARIOS IP Monitoring CentreIP Monitoring CentreContent PresentationContent Presentation
-
7/28/2019 4_200702-ISS-DXB-ATIS3.pdf
15/18
Search/Search/NavigateNavigate
DisplayDisplay
SecureSecure
ClassifyClassify
OrderOrder
KLARIOSKLARIOS IP Monitoring CentreIP Monitoring CentreThe Internet ViewerThe Internet Viewer
-
7/28/2019 4_200702-ISS-DXB-ATIS3.pdf
16/18
Why ATIS systemsWhy ATIS systems
-
7/28/2019 4_200702-ISS-DXB-ATIS3.pdf
17/18
-
7/28/2019 4_200702-ISS-DXB-ATIS3.pdf
18/18
Questions?Questions?
