real time analytics of dns packets using apache …...real time analytics of dns packets using...
Post on 21-Jun-2020
0 Views
Preview:
TRANSCRIPT
Real Time Analytics of DNS packets using Apache STORM
Lightning talk
Francisco Cifuentesfrancisco@niclabs.cl
1
State of the Art
These are DSC presenters!
2
DSC: A DNS Statistics Collector
3
What’s Apache Storm!?
“Apache Storm is a (…) distributed realtime computation system.”
https://storm.apache.org/
4
What it is used for!?
“Storm has many use cases: realtime analytics, online machine learning, continuous computation, distributed RPC, ETL, and more…”
https://storm.apache.org/
5
What it is used for!?
And many others...
6
What it is used for!?
“One example is security monitoring where we are leveraging Storm to analyze the network telemetry data of our globally distributed infrastructure in order to detect and mitigate cyber attacks”
http://storm.apache.org/documentation/Powered-By.html
7
Proposed Architecture
8
Proposed Architecture
9
Proposed Architecture
10
Inspiration
11
Inspiration
Distance between client and server reached the threshold!
12
Some choices reasons
● Why do we need real time analysis?● Why Apache Storm?
13
What has been done
● DNS Packet Parser.● Tested different topologies.
14
Francisco Cifuentesfrancisco@niclabs.clhttp://ratadns.niclabs.cl
Suggestions / Ideas accepted!
15
top related