Deep Procket dubawa (Dpi)Shin fasaha da ake amfani da ita a cikin fakitin cibiyar sadarwa (NPBs) don bincika da kuma bincika abin da ke cikin fakiti na cibiyar sadarwa a matakin granis. Ya ƙunshi bincika kuɗin kuɗin, taken, da sauran takamaiman bayanin yarjejeniya a cikin fakiti don samun cikakkiyar fahimta cikin zirga-zirgar ababen hawa.
DPI ya wuce nazarin bincike mai sauƙi kuma yana samar da zurfin fahimta game da bayanan yana gudana cikin hanyar sadarwa. Yana ba da damar yin zurfin bincike na aikace-aikacen Layer, kamar http, FTP, SMTP, VOIP, ko Tropungiyar Kula da Bidiyo. Ta hanyar bincika ainihin abun ciki a cikin fakiti, DPI na iya ganowa da gano takamaiman aikace-aikace, ladabi, ko ma takamaiman tsarin bayanai.
Baya ga bayanan dabaru na hanyar adiresoshin, adiresoshin makirci, tashar jiragen ruwa, tashar jiragen ruwa, da Takaddun makamashi, da Takaddun makamancinsu, da kuma alamun wucewa, DPI kuma yana ƙara bincika aikace-aikace da abubuwan da suke ciki. Lokacin da fakiti 1p ko bayanan UDP ko UDP yana gudana ta hanyar tsarin sarrafa bandwidth, sannan kuma ya karanta abin da ke cikin aikin aikace-aikacen 1p, sannan kuma don samun zirga-zirgar da ta dace da tsarin gudanarwa da tsarin ke bayyana ta tsarin.
Yaya aikin DPI?
Firewalls na gargajiya galibi suna rasa ikon sarrafawa don yin cikakkun rajistar na ainihi akan manyan zirga-zirgar ababen hawa. A matsayinta na ci gaba, ana iya amfani da DPI don yin ƙarin rikitarwa don bincika taken da bayanai. Yawanci, wuta tare da tsarin gano gano sau da yawa ana amfani da DPI. A cikin duniya inda bayanan dijital ke da ma'ana, kowane yanki na dijital ne aka isar da Intanet a cikin kananan fakiti. Wannan ya hada da imel, sakonni da aka aiko ta hanyar app, shafukan yanar gizon sun ziyarta, tattaunawar bidiyo, da ƙari. Baya ga ainihin bayanai, waɗannan fakitoci sun hada da Metadata cewa gano tushen ababen hawa, abun ciki, makoma, da sauran mahimman bayanai. Tare da fasahar pack sket, za a iya kula da bayanai da kuma gudanar da tabbatar da tabbatar da shi zuwa wurin da ya dace. Amma don tabbatar da tsaro na cibiyar sadarwa, tacewar kwarjin na gargajiya ya isa sosai. Wasu daga cikin mahimman hanyoyin da aka sanya shafin yanar gizo a cikin aikin sadarwa an jera su a ƙasa:
Yanayin daidaitawa / Sa hannu
Kowane fakiti ana bincika shi don wasa da wani bayanan da aka sani da aka santa ta hanyar wuta tare da tsarin ganowa (IDs) iyawar. ID na ID don sanannun ƙayyadadden ra'ayi da ƙafar zirga-zirga yayin da ake samun alamu. Rashin kyawun da ya dace da manufar da aka dace da shi shine kawai ya shafi sa hannu ne kawai waɗanda ake sabuntawa akai-akai. Bugu da kari, wannan fasaha na iya kare da barazanar da aka sani ko hare-hare.
TAFIYA
Tunda dabara ta tanda ba kawai ya ba da damar dukkan bayanan da bai dace da tsarin sa hannu ba, dabarar tanda na Pascol ya yi amfani da su ba su da alamun rashin daidaituwa game da hanyar da ke da ta dace. Madadin haka, yana ɗaukar tsoffin manufofin kare laifi. Ta hanyar ma'anar yarjejeniya, wutar wuta ta yanke shawarar abin da ya kamata a ba da izinin zirga-zirga kuma ya kare hanyar sadarwa daga barazanar da ba a san shi ba.
Tsarin rigakafin (iPs)
IPS mafita na iya toshe watsa fakiti masu cutarwa dangane da abun cikin su, don haka dakatar da ake zargi da hare-hare a cikin ainihin lokaci. Wannan yana nufin cewa idan fakiti yana wakiltar mahimmancin tsaro, IPS zai toshe zirga-zirgar zirga-zirga dangane da tsarin dokoki. Rashin kyawun IPs shine buƙatar sabunta bayanan juyin juya kwamfuta a kai a kai game da sabbin barazanar, da kuma yiwuwar ingantattun karya. Amma za a iya yin wannan hatsarin ta hanyar ƙirƙirar manufofin masu ra'ayin kansu da ƙafayya na al'ada, da kuma kafa halayen hanyoyin sadarwa da bayar da rahoton abubuwan da suka dace da kuma fadakarwa.
1- DPI DPI (Binciken fakiti na DPI
The "deep" is level and ordinary packet analysis comparison, "ordinary packet inspection" only the following analysis of IP packet 4 layer, including the source address, destination address, source port, destination port and protocol type, and DPI except with the hierarchical analysis, also increased the application layer analysis, identify the various applications and content, to realize the main functions:
1) Binciken aikace-aikacen - Bincike na Tsarin Hasken Yanar Gizo, nazarin aikin, da kuma tantance mai gudana
2) Bincike na mai amfani - bambancin rukuni na mai amfani, nazarin hali, bincike na tashoshi, bincike na Trend, da sauransu.
3) Binciken Bincike - Bincike Abubuwan da ke bisa ga halayen yankin (gari, yanki, da sauransu) da nauyin tashar tashar
4) Gudanar da zirga-zirga - tabbacin saurin P2P, tabbacin bandwidth, ingancin hanyoyin sadarwa, da sauransu.
5) Tabbatarwar Tsaro - Harin Ddos, hadarin Watsarori, Yin rigakafin hare-hare masu cuta, da sauransu.
Na biyu: Janar Classigation aikace-aikacen cibiyar sadarwa
A yau akwai aikace-aikace marasa iyaka akan Intanet, amma aikace-aikacen Yanar gizo na yau da kullun na iya zama mai rauni.
Kamar yadda na sani, mafi kyawun kamfanin amincewa da kamfanin fitarwa shine Huawei, wanda ya ce ya fahimci apps 4,000. Binciken Princol shine ainihin kayan aikin kamfanonin wuta da yawa (Huawei, Zte, da kuma inganta hanyoyin aikace-aikacen, kuma inganta ayyukan aikace-aikace da amincin kayayyaki. A cikin samfurin malware malware dangane da halaye na zirga-zirgar cibiyar sadarwa, kamar yadda nake yi yanzu, daidai kuma tantancewar fassara mai mahimmanci kuma mahimmanci. Ban da zirga-zirgar yanar gizo na gama gari daga zirga-zirga na fitarwa, sauran zirga-zirgar za ta yi asusu na karamin bincike, wanda ya fi kyau ga binciken malware da ƙararrawa.
Dangane da kwarewata, an yi amfani da aikace-aikacen aikace-aikacen da ake amfani da su kamar yadda aka tsara su gwargwadon ayyukansu:
PS: Dangane da fahimtar mutum na aikace-aikacen, kuna da kyawawan shawarwari da maraba don barin samuwar saƙo
1). E-mail
2). Video
3). Buga
4). Ofishin OA
5). Sabunta software
6). Kudi (Bank, Alipay)
7). Hannun jari
8). Sadarwa na zamantakewa (i software)
9). Binciken yanar gizo (wataƙila mafi kyawun gano tare da URLs)
10). Download Kayan Shari (Domain Shafin yanar gizo, P2P Saukewa, BT Mai alaƙa)
To, yadda DPI ke dubawa (bincika fakiti mai zurfi) yana aiki a cikin NPB:
1). Packet Cier: NPB yana kama da zirga-zirgar ababen hawa daga tushe daban-daban, kamar sauya, masu hawa ruwa, ko taps. Yana karɓar fakiti da ke gudana cikin hanyar sadarwa.
2). Packeting Parsing: NPB da aka kama suna fafatawa da yadudduka daban-daban da bayanan da ke hade. Wannan tsarin aiwatarwa yana taimakawa gano abubuwan daban-daban a cikin fakiti, kamar taken Ethernet, suttura, TCP ko UDP.
3). Binciken Payload: Tare da DPB, NPB ya wuce binciken taken kuma yana mai da hankali kan kayan biya, gami da ainihin bayanai a cikin fakiti. Yana jarrabawar kayan masarufi a cikin zurfin ciki, ba tare da la'akari da aikace-aikacen ko yarjejeniya ba, don cire bayanan da suka dace.
4). Taron yarjejeniya: DPI yana ba da takamaiman NPB don gano takamaiman ka'idoji da aikace-aikacen da ake amfani da su a cikin zirga-zirga na cibiyar sadarwa. Zai iya ganowa da rarrabe ladabi kamar http, FTP, mai smtp, DNS, VoIP, ko kuma cocin bidiyo.
5). Binciken abun ciki: DPI yana ba da damar NPB don bincika abubuwan fakiti don takamaiman tsarin, sa hannu, ko keywords. Wannan yana ba da barazanar barazanar cibiyar sadarwa, kamar su malware, ƙwayoyin cuta, yunƙurin shiga, ko ayyukan m. Hakanan za'a iya amfani da DPI don tace abubuwan abun ciki, yin amfani da manufofin cibiyar sadarwa, ko gano laifuffukan saiti na bayanai.
6). Hadakar Metadata: A lokacin DPB, fitar da metadata da suka dace daga fakiti. Wannan na iya haɗawa da bayanai kamar tushen kuma adireshin IP manufa, lambobin Port, data zama, bayanan ma'amala, ko wasu halayen da suka dace.
7). Harkokin zirga-zirga ko tace: dangane da binciken DPI, NPB na iya amfani da takamaiman fakiti don ci gaba da aiki, kamar kayan aikin tsaro, koptomasashen kula da kayan aiki, ko dandamali na saka idanu. Hakanan yana iya amfani da ƙa'idodin tace don zubar da fakiti ko tura fakitoci dangane da abun ciki ko tsarin abun ciki.
Lokaci: Jun-25-2023
