Niometrics Application Recognition & Control System

Nio ARCS addresses the inability of existing security products like firewalls, web filters, and proxies to provide deep network visibility and control the growing number of applications peddling traffic within enterprise networks.

To inspect traffic at the application layer, Nio ARCS uses a proprietary application recognition engine that utilizes both content and statistical features to cope with the growing protocol complexity and evasive tactics used by applications.

Real time Application Traffic Analysis, Visualization and Control

Niometrics’ network traffic visualization dashboard allows administrators to analyze and account for all application, user or host level network activity. From the same dashboard, administrators can also enforce network policies to allow, block, or shape application traffic for specific or groups of applications and users.

With an industry leading application recognition capability of 5,500 applications, Niometrics is able to provide enterprises with the highest level of network awareness required to protect today’s IT networks. In addition, a traffic telemetry service helps discover new applications and improves detection while an open architecture allows users to customize ARCS to their requirements.

whynio_product

Network Visibility | Threat Detection | Application Control

  • Real-time network activity dashboard
  • Identify and control more than 5,500 applications, services, and protocols
  • Deep network visibility of all application and user activity
  • Granularly block, allow and shape application traffic

Technology Features

  • Superior layer-7 inspection engine capable of identifying almost all enterprise traffic
  • Detection of encrypted & obfuscated protocols including BitTorrent, Skype, eMule, Winny(P), PerfectDark, FreeNet, Ares
  • Flexible core design to keep pace with malware and application protocol evolution
  • Extensible architecture allows customization of features

Application Control In Action

  • Stop data loss though applications such as file sharing, P2P, VPN, proxies, and remote back up applications
  • Detect and block known malware traffic and identify hosts that have been compromised
  • Allow VOIP voice and video while blocking file transfer (Skype, MSN, Yahoo!)
  • Throttle media streaming applications (Youtube, iTunes, Grooveshark)
  • Block online games (Farmville, Mafia Wars) across platforms (iOS, Android, Win, Mac)
  • Allow only marketing department full access to social networking tools (Linkedin, Facebook, Twitter) and allow read-only for all other staff during work hours.

Feature Highlights

Application Visibility and Control

  • Detection of encrypted/obfuscated applications
  • Feedback and updates through SIGMA cloud
  • Custom detectors and signatures through SDK
  • Policies for traffic recording based on application

Management and Reporting

  • HTML5 Web UI for configuration and dashboard
  • CLI access through console or SSH
  • PDF and HTML reports
  • Custom report generation
  • CSV and proprietary flow logs
  • Centralized multi site management

Web Categorization

  • More than 20M URL lists in 75 categories
  • Filtering rules and option for warning banners
  • URL logging for analysis and reporting
  • Customizable whitelists

Quality of Service

  • Traffic shaping based on policy ruleset
  • Min/max bandwidth and priority per QoS class
  • Network and server latency tracking and reporting
  • Integration with Application Control and Firewall

Control Evasive Protocols

Identify high-risk applications that are notorious in hiding from detection. The Nio design puts strong emphasis in identifying such applications, including BitTorrent, Thunder, QVOD, and PerfectDark.

Weekly Ruleset Updates

Get updated weekly with new rulesets that have been developed by the Niometrics R&D team from analyzing unidentified traffic and identifying popular new applications.

Proxy Peeling

Accurately account for traffic between end-users and remote session end-points by letting Nio peel off the proxy layer of your network.

HTML5 Web Interface

Improved user experience with new HTML5 capabilities and a rich Ajax-driven UI.

Extensible Architecture

Add custom signatures for proprietary protocols, and develop your own custom traffic analysis modules for security and compliance with our highly adaptable engine.

Application Traffic Recording

Flexible logging of traffic to disk for any application or policy profile, in PCAP, IPFIX or proprietary format for further analysis using home-grown or third-party tools for auditing or forensics.

Virtual Appliance Option

Deploying the Nio in the form of virtual appliances in your existing server or datacenter infrastructure reduces cost and streamlines management.

Nio 800 Nio 2500 Nio 6100
Max number of users (recommended) 100 1,000 3,000
Forwarding throughput 200 Mbit/s 1 Gbit/s 2 Gbit/s
Layer 7 inspection throughput 100 Mbit/s 1 Gbit/s 2 Gbit/s
Max concurrent sessions 75,000 1,000,000 2,000,000
Max new sessions per second 7,500 75,000 100,000
Network interfaces 6x1Gb 8x1Gb 8x1Gb (10G option)
Interface bypass 4 (2 pair) 6 (3 pair) 8x (4 pair)
High-availability features no yes yes
Appliance type 1U rack-mountable 2U rack-mountable
Weight 4.7kg 10kg 18kg

>> Download Datasheet (PDF, 1.8M)