[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: "I Write Mass Surveillance Software"

To: or-talk@xxxxxxxxxxxxx
Subject: Re: "I Write Mass Surveillance Software"
From: Michael Holstein <michael.holstein@xxxxxxxxxxx>
Date: Thu, 17 Sep 2009 15:35:29 -0400
Cc: or-talk@xxxxxxxx
Delivered-to: archiver@xxxxxxxx
Delivered-to: or-talk-outgoing@xxxxxxxx
Delivered-to: or-talk@xxxxxxxx
Delivery-date: Thu, 17 Sep 2009 15:35:33 -0400
In-reply-to: <dfae87ff0909161401h32c7d7f8o3617d63a4f5e0f39@xxxxxxxxxxxxxx>
References: <dfae87ff0909161401h32c7d7f8o3617d63a4f5e0f39@xxxxxxxxxxxxxx>
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx
User-agent: Thunderbird 2.0.0.23 (X11/20090817)

http://www.reddit.com/r/IAmA/comments/9kwph/i_am_a_guy_who_writes_covert_software_that_runs/

Thoughts?

The mention of "C like" code and the DPI makes me think the hardwareuses Intel's IPX series network processors. For those, the ruleset isbasically written in C and uploaded to the device.

SANS has a whitepaper on doing Snort IDS with them, a fairly similarapplication to the above (this is for the 24xx series @ 2.5gbps)


http://www.sans.org/reading_room/whitepapers/detection/intel_ixp_network_processor_based_intrusion_detection_32919

The IXP2800 can do line-rate 10gbps
http://download.intel.com/design/network/ProdBrf/27905403.pdf

Cheers,

Michael Holstein
Cleveland State University

Follow-Ups:
- Re: "I Write Mass Surveillance Software"
  - From: Michael Holstein

References:
- "I Write Mass Surveillance Software"
  - From: Rich Jones

Prev by Author: Re: Gmail
Next by Author: Re: "I Write Mass Surveillance Software"
Previous by thread: Re: "I Write Mass Surveillance Software"
Next by thread: Re: "I Write Mass Surveillance Software"
Index(es):
- Author
- Thread