Wire-speed 10-Gbps network intrusion detection and prevention system exploits massive, fine-grain, instruction-level parallelism, which is intrinsic to IDPS processing loads.
Metanetworks Technologies, a leading provider of high-speed network security and monitoring hardware, announces its MTP-10G - the world's first wire-speed 10-Gbps Network Intrusion Detection and Prevention System (IDPS). The MTP-10G uses Metanetworks' Meta Traffic Processor (MTP), a unique network processor that was partially developed using research grants from the National Science Foundation and the US Air Force Rome Laboratories. The MTP is specifically designed to exploit massive, fine-grain, instruction-level parallelism, which is intrinsic to IDPS processing loads.
Livio Ricciulli, Metanetworks Technology's president and chief scientist, states that, 'Matching the network security and monitoring computational workload to the right processing paradigm enabled us to make a fundamental leap forward.' The MTP-10G is a standard 64bit, 66MHz, full-size PCI card that routinely passes Gigabit Ethernet traffic between its two 10-gigabit ports with 500 ns latency while performing wire-speed, stateful, packet inspection.
When determining whether to capture or block packets, the card can apply up to 650 wire-speed stateful policies per packet.
When the MTP-10G captures packets, it presents them to the operating system as a standard NIC in promiscuous mode.
Users can install up to six cards in a single host, resulting in a total IDPS capacity of 60 Gbps (at least 10 times greater than any existing IDS or IPS).
The MTP-10G cards support existing, open-source network security and monitoring applications.
They accomplish this by specifying capture and filtering policies using public-domain IDS signatures or standard network monitoring libraries.
Metanetworks' MTP-10G technology also provides developers a rich API for creating custom network security and monitoring applications.
Because the MTP-10G cards interface with the host operating system as standard NICs, they can seamlessly run a variety of standard application software at much faster speeds.
For example, open-source Snort IDS software can monitor a few hundred megabits of traffic with a standard NIC.
With the MTP-10G card, Snort can monitor a full 10 Gbps of traffic without modification.
The MTP-10G cards are also compatible with other popular libpcap-based network monitoring applications such as tcpdump.
Metanetworks presented the impressive capabilities of the MTP-10G PCI cards at the recent Joint Techs Workshop in Salt Lake City.
Livio Ricciulli says, 'By embracing the open-source model, we hope that our MTP devices will be a major catalyst for change in IDPS technology much as open-source operating systems were to the early PC market.' * About the Joint Techs Workshop - Joint Techs is a national conference of network engineers, supporting the high performance networking community.
Approximately 300 network operators and high performance computing researchers from government agencies and universities attend each event.
* About Metanetworks Technologies - Metanetworks Technologies is a spin-off of Metanetworks, a leading-edge, award-winning networking security innovator since 1999.
Metanetworks Technologies develops and commercializes advanced hardware-based, network-security processing systems for the open source market.
Metanetworks Technologies is located in Los Gatos, California, USA, in the heart of Silicon Valley.
No comments:
Post a Comment