Deep Packet Inspection-- The Future of Next Generation Service Delivery Vin Costello—Vice President and General Manager—Americas Allot Communications
September 10-12, 2007 Los Angeles Convention Center Los Angeles, California 3 The Multi-Service Broadband Home Office Mobile VOIP Presence Work VPN IM Apps Web VOIP Kid’s Room Voice IM Streaming (video, music) SD Video VOIP IM Broadband Kitchen IM Web VOIP Streaming (Video, Music) VOIP Living Room HD Video VOD VOIP IM Gaming Media IM/Chat
September 10-12, 2007 Los Angeles Convention Center Los Angeles, California 4 IMS for Service Enablement SIP foundation of IMS as signaling protocol for application and user registration Simplifies service delivery Supports QoS assignment during application registration Application focus on Messaging VOIP Office Mobile VOIP Presence Work VPN IM Apps Web VOIP Kid’s Room Voice IM Streaming SD Video VOIP IM Broadband Kitchen IM Web VOIP Streaming (Video, Music) VOIP Living Room HD Video VOD DL VOIP IM Gaming Media DL IM/Chat
September 10-12, 2007 Los Angeles Convention Center Los Angeles, California 5 New Services Require More Than IMS/SIP IMS does not account for Web 2.0 and non-SIP applications Acknowledged in A-IMS initiative by Verizon Internet, Web 2.0 applications do not “register” with network, and are usually not hosted by service provider Value-Added Services often mimic web traffic New levels of network intelligence enable comprehensive offerings Subscriber/application awareness Tightly integrated service pipeline Detailed network visibility Office Mobile VOIP Presence Work VPN IM Apps Web VOIP Kid’s Room Voice IM Streaming SD Video VOIP IM Broadband Kitchen IM Web VOIP Streaming (Video, Music) VOIP Living Room HD Video VOD DL VOIP IM Gaming Media DL IM/Chat
September 10-12, 2007 Los Angeles Convention Center Los Angeles, California 6 DPI for Comprehensive Services Delivery Comprehensive application control Precise bandwidth management Intelligent service redirection Unmanaged traffic Visible, managed traffic P2P Upload P2P Download VoIP WebTV Video Conferencing Gaming Service Providers monetize full range of network applications IMS applications Web applications Over-the-top applications
September 10-12, 2007 Los Angeles Convention Center Los Angeles, California 7 DPI for Comprehensive Services Delivery Signature over several packets found DPI enables detection of applications that may not be easily identifiable by traditional analysis Applications masquerading as web traffic/Port 80 (P2P, messaging, streaming) Encrypted messaging and video (Vonage, Skype) Encrypted BitTorrent
September 10-12, 2007 Los Angeles Convention Center Los Angeles, California 8 DPI as a “Service Director” IP Core Internet B-RASDSLAM/ CMTS Subscribers Only DPI can comprehensively identify applications to enable intelligent service creation in the service provider’s network Only DPI can comprehensively identify applications to enable intelligent service creation in the service provider’s network P2P: Limit to 512kbps VOIP: Guarantee 64kbps Web: Send to Parental Control Security: Send to Attack Detection
September 10-12, 2007 Los Angeles Convention Center Los Angeles, California 9 Future Proofing Your Network DPI is the only technology that enables service providers to: Control existing network traffic Monetize over-the-top applications Integrate NGN architectures with legacy applications without losing control