Application Recognition & Control System (ARCS)

The Network Intelligence Gap

With the increasing complexity of application traffic, networks are becoming more difficult to understand and manage.
What challenges lie ahead for network owners?

 

Redefining Network Intelligence

Find out how we are changing the way you monitor, manage and control your network.
Click to read more »

With the increasing number of encrypted and obfuscated applications, network traffic has become more complex. Administrators now have limited visibility and even less control over their networks.

Niometrics addresses these issues by providing deep network intelligence and application control with its award-winning Niometrics Application Recognition and Control System (ARCS).

Niometrics ARCS identifies more than 5,500 applications, protocols and services, offering close to 100% application detection coverage at core network speeds of 10 Gb/s.

Complemented by a network traffic analytics platform, administrators can rely on a real-time interactive dashboard and on extensive customizable reporting tools to analyze trends, investigate incidents and enable enforcement.

To maintain high detection rates at close to 100%, an automated protocol-learning infrastructure has been integrated to detect, analyze and identify any new, modified or unknown protocol or application traffic.

Network Visibility

Identify more than 5,500 applications, services and protocols
Intelligent analysis and investigation dashboard
Extensive logs of all application and user activity
Analytical reports of network trends

Application Control

Granularly block, shape or prioritize per application and user
Control encrypted and obsfucated applications
Zero latency observation and enforcement in sideline mode
Policy enforcement and monitoring dashboard integration

Threat Intelligence

Stop known malware and botnet command & control communication
Deploy immediate measures against new unknown traffic
Log and record unknown traffic for further investigation
Create and deploy custom security rulesets and signatures

Niometrics’ award-winning ARCS analyzes network traffic at all network layers, providing unprecedented insight and control over all applications and users.
 

Industry Leading Detection

Designed from ground up specifically to analyze application traffic (layer-7), Niometrics’ high-resolution traffic inspection engine identifies more than 5,500 applications, services and protocols with an industry leading 99% detection rate.
 

Visualization and Analytics

Niometrics’ Network Intelligence dashboard is tightly integrated with a powerful network database structure that replaces complex logs with a user friendly interactive dashboard and a flexible reporting engine that allows users to quickly drill down to investigate and also extrapolate network traffic trends.

Automated Application Discovery

An application discovery system collects information about new, modified or unknown protocols and unknown application traffic, enabling the timely identification of new applications and quick updates.
 

Flexibility and Scalability

Niometrics’ flexible software-driven engine is tuned for multi-gigabit layer-7 inspection and forwarding performance, while evolving with microprocessor and virtualization technologies. A software development kit allows further customization of signatures and detectors.
 

Network Intelligence and Application Control

Detection of encrypted/obfuscated applications
Feedback and updates through SIGMA cloud
Custom detectors and signatures through SDK
Policies for traffic recording based on application

Visualization and Analytics

HTML5 Web UI for configuration and dashboard
CLI access through console or SSH
PDF and HTML reports
Custom report generation
CSV and proprietary flow logs
Centralized multi-site management

Quality of Service

Traffic shaping based on policy ruleset
Min/max bandwidth and priority per QoS class
Network and server latency tracking and reporting
Integration with Application Control and Firewall

Web Categorization

More than 20M URLs in 75 categories
Filtering rules and option for warning banners
URL logging for analysis and reporting
Customizable whitelists

Control Evasive Applications

Identify high-risk applications that are notorious in hiding from detection. The Niometrics ARCS design puts strong emphasis in identifying such applications, including BitTorrent, Thunder, QVOD, and PerfectDark.

Weekly Ruleset Updates

Get updated weekly with new rulesets that have been developed by the Niometrics R&D team from analyzing unidentified traffic and identifying popular new applications.

Proxy Peeling

Accurately account for traffic between end-users and remote session end-points by letting Niometrics ARCS peel off the proxy layer of your network.

HTML5 Web Interface

Improved user experience with new HTML5 capabilities and a rich Ajax-driven UI.

Extensible Architecture

Add custom signatures for proprietary protocols, and develop your own custom traffic analysis modules for security and compliance using our highly adaptable engine.

Application Traffic Recording

Flexible logging of traffic to disk for any application or policy profile, in PCAP, IPFIX or proprietary format for further analysis using home-grown or third-party tools for auditing or forensics.

Virtual Appliance Option

Deploying the Niometrics ARCS in the form of virtual appliances in your existing server or datacenter infrastructure reduces cost and streamlines management.

 

Application Control in Action

  • Stop data loss though applications such as file sharing, P2P, VPN, proxies, and remote back up applications
  • Detect and block known malware traffic and identify hosts that have been compromised
  • Allow VOIP voice and video while blocking file transfer (Skype, MSN, Yahoo!)
  • Throttle media streaming applications (Youtube, iTunes, Grooveshark)
  • Block online games (Farmville, Mafia Wars) across platforms (iOS, Android, Windows, OSX)
  • Allow only marketing department full access to social networking tools (LinkedIn, Facebook, Twitter) and allow read-only for all other staff during work hours

  Nio 2500 Nio 6100 Nio 6500 Nio 7100
User License up to 1,000 up to 3,000 up to 10,000 up to 200,000
System Performance        
Layer 7 inspection throughput 1 Gbit/s 2 Gbit/s 5 Gbit/s 10 Gbit/s
Traffic recording throughput 300 Mbit/s 300 Mbit/s 300 Mbit/s 2 Gbit/s
Max concurrent sessions 1,000,000 2,000,000 5,000,000 15,000,000
Max new sessions per second 20,000 30,000 50,000 80,000
Application Control        
Number of applications identified > 5,500
Policy actions Allow, Block, Shape, Warning Banner
IP to user/group mapping Active Directory, DNS, GPRS Control (GTP-C), on device DB
Data logging and Export        
Logging Syslog, SNMP trap, HTTP API
Max log retention time 60 days 90 days
Appliance Interfaces        
Applicance type 1U 2U 4U
Network interfaces 8x1Gb 8x1Gb 8x1Gb+2x10Gb 8x1Gb+2x10Gb
Interface bypass 8x (4 pair) 8x (4 pair) 8x (4 pair) 2x (1 pair)
Management interfaces 2x (LAN, LAN console)
Console access 1x Serial RJ-45, 2x USB 2.0 2x USB 2.0

Download Data Sheet

» Niometrics ARCS Datasheet

Realtime Network Monitoring & Visualization

Existing network tools and security solutions are often difficult to use and understand, providing no further visibility besides basic user, communication port and host destination. Niometrics offers users a revolutionary way of understanding their networks, providing never-before insights into all application and user activity in extensive detail.

Powerful Drill-down and Enforcement Dashboard

Niometrics ARCS comes with a modern web-based management interface, designed for interactivity. Leveraging on lightweight Javascript, powerful HTML5 visuals, and an intelligent network traffic indexing and searching backend, Niometrics ARCS makes it easy for IT administrators to navigate to the activity of interest and interact with the system to extract information or configure network policies. Users can instantly switch from the graphical dashboard to low-level logs, or to right-click policy enforcement configuration.

Comprehensive Reporting Tools

Niometrics ARCS periodically aggregates traffic data and produces high-level summaries on how network resources are being utilized. This includes high-volume applications, top bandwidth-consuming users, policy violations, most popular applications, high-level security assessments, as well as other host and session statistics. Reports are available through the Web-based management interface and can also be delivered by email to the IT manager in PDF format at scheduled intervals.

In addition to high-level reports, IT administrators can run custom queries based on time range, application, and user filters to produce statistical or graphical reports . For demanding users, Niometrics ARCS produces flow-level logs that can be downloaded and analyzed through C and Python bindings.

Easy Management

Network Monitoring
Key indicators are summarized in a simple real-time view, enabling the IT manager to do quick routine checks on network conditions and appliance status. Network status information presented includes traffic load, percentage of policy violations, number of active users, and detection rate. Anomalies in any of those measures would warrant a drill-down inspection. The IT manager can also observe appliance resource utilization as well as availability of updates on the same panel.

The Niometrics Technical Assistance Centre is a 24/7 support centre for our customers and partners. It offers easy access to our knowledge database, FAQs, user guides, training materials as well as raising a service or feature request.

If you have any service requests or feedback, please contact our technical support directly at ntac@niometrics.com and we will respond to your shortly.