SlideShare a Scribd company logo

Netclean Whitebox by Practeo

F
flyingpotato

Practeo: Netclean Whitebox Presentation at SwiNOG #17.

Technology
1 of 26
Download to read offline
October 22, 2008 Bern
IN A GLANCE • a hybrid solution using BGP • based on several • using IP tunnels blacklists • doing packet inspection • robust & flexible • using a clever redirection • easily deployed mechanism and managed
BACKGROUND AND PURPOSE • Social responsibility. A stand against child pornography is proof that your organization adopts and lives up to commonly recognized values. • Common initiative Reduce the occasions when innocent internet users might be exposed to traumatic and unlawful images. Diminish the re-victimisation of children by restricting opportunities to view their sexual abuse. Disrupt the accessibility and supply of such content to those who may seek out such images.
LEGAL BACKGROUND • Possession of child pornography is against the law (art. 197 CPS), exception for Internet temporary files (cache) • In 2010, a law to punish surf on child porn websites should be edicted by the government (based on motion PRD Schweiger) • Although it is illegal for an operator to track and store information about who makes the accesses, it is possible to block the traffic accessing illegal content. • Long run before potential closing of child porn websites
ONGOING TREND IN EUROPE 2004 ¦ Norway active filtering ¦ UK Gov will 2005 ¦ Sweden ¦ Denmark 2007 ¦ Finland ¦ Netherlands ¦ Switzerland 2008 ¦ France ¦ Italy http://libertus.net/censor/ispfiltering-gl.html
PARTNER ORGANIZATIONS Technology Police NGOs
PARTNER BLACKLISTS • Provided by the Hotline • Updated every month • Visual check of each URLs by 2 people • Full URLs up to the actual picture • Updated twice a day FAQs : www.iwf.org.uk/public/page.148.437.htm Since 2004 • Visual check of each URLs • Domain name • under discussions
DNS BLOCKING (DNS POISONING)‫‏‬ Abuse-site www.lolita.com 77.222.40.40 Web Server Standard DNS Query: www.lolita.com Answer: 77.222.40.40 Webserver HTTP with blocking page Advantages: 192.168.1.80 - Easy to deploy - Standard services Client Computers DNS-Query DNS-blocking system Problems: nameserver - Extremely easy to bypass - Overblocking DNS Query: www.lolita.com Answer: 192.168.1.80
IP FILTER Abuse-site www.lolita.com 77.222.40.40 Web Server ........ hostroute 12.219.53.233 null0 hostroute 142.68.240.18 null0 hostroute 159.25.16.103 null0 hostroute 159.25.16.107 null0 ....... Advantages: in core-routers - Extremely easy to deploy Problems: - Extremely crude - Massive overblocking Client Computers
URL FILTERS Web Server ........ www.google.com www.aftonbladet.se ...... www.lolita.com Advantages: ...... - Very accurate ...... Content Filter Problems: - Almost impossible to deploy in reality - Requires deep packet inspection Client Computers
HYBRID BLOCKING - OVERVIEW http://abozar.tripod.com/adm/ad/toolbar.css http://abutril.no.sapo.pt/adm/redirect/photo/photo/img/print_icon.gif ...... ...... www.lolita.com/pics/x.jpg ...... Web Server Advantages: - Combines the advantages of IP and URL-filter Clean traffic - Very acurate, can match Filtering proxy whole URL's - Easy to deploy - No overblocking at all - No proxying Suspect traffic ........ hostroute 12.219.53.233 filtering_proxy hostroute 142.68.240.18 filtering_proxy hostroute 159.25.16.103 filtering_proxy hostroute 159.25.16.107 filtering_proxy ....... in core-routers Client Computers
WHITEBOX - ONSITE http://abozar.tripod.com/adm/ad/toolbar.css http://abutril.no.sapo.pt/adm/redirect/photo/photo/img/print_icon.gif ...... ...... www.lolita.com/pics/x.jpg ...... Web Server Advantages: - Combines the advantages of IP and URL-filter Clean traffic - Very acurate, can match NetClean WhiteBox whole URL's - Easy to deploy - No overblocking at all - No proxying Suspect traffic BGP routes. in ONE core-router Client Computers
WHITEBOX – HOSTED Clean Suspect Blocked Web Server Web Server www.somedomain.com Web Server www.lolita.com SYN www.somedomain2.com NetClean Whitebox m .co ACK s it e ect sp .su ww ://w BGP Session in GRE Tunnel ttp Th GE Tunnel with a BGP Session Announce suspect ip’s (445 x /32) S T O P Client Computers
HYBRID BLOCKING - IN COLLABORATION WITH TODAY'S SOLUTION Abuse-site www.lolita.com Web Server NetClean Whitebox DNS-Blocking System Nameserver ISP Router DNS-Blocking System Webserver Client Computers
HYBRID BLOCKING THRU NETCLEAN WHITEBOX • Combines the advantages of IP and URL-filter • Very accurate, can match whole URL's • Easy to deploy • No overblocking at all • No proxying • Hosted or Onsite Solution
PROOF OF CONCEPT Time frame SUNET (filtering between 12/2005 to 12/2007) PORT80 (filtering between 08/2006 to 12/2007) DGC (filtering between 08/2006 to 12/2007) CH_ISP (filtering between 08/2008 to 10/2008) Conclusions SUNET approximately 2200 blocks per day occured, PORT80 approximately 3300 blocks per day occurred DGC had 300 per day CH_ISP had 2000 detections per day.
PROOF OF CONCEPT A deeper study of SUNET was made, where the filter was installed but not blocking anything for a month, and with the same setup the blocking was activated for a month, 800 out of 60.000 users accessed child pornography URLs, This means that around 1% of the users were actively seeking for child pornography. The number of people trying to access black-listed URLs did not decrease even after the filter was installed. The same number of users were seeking child pornography, but with less frequency due to active filtering.
REAL TRAFFIC STATISTICS FROM CH_ISP
REAL TRAFFIC STATISTICS FROM CH_ISP
REAL TRAFFIC STATISTICS FROM CH_ISP
2008 PRICING – HOSTED Estimated number of users Yearly cost per user 0 to 50’000 CHF 0.30 50'001 to 100’000 CHF 0.28 101'000 to 200’000 CHF 0.26 201'000 to 400’000 CHF 0.23 401'000 to 800’000 CHF 0.19 801'000 to 1'000’000 CHF 0.15 more Call us Support is included in the price.
2008 PRICING – ONSITE Estimated number of users Installation cost Update fee (year 2) 0 to 50’000 CHF 12’000 CHF 4’500 50'001 to 100’000 CHF 22’500 CHF 7’500 101'000 to 200’000 CHF 37’500 CHF 12’000 201'000 to 400’000 CHF 66’000 CHF 22’500 401'000 to 800’000 CHF 114’000 CHF 37’500 801'000 to 1'000’000 CHF 144’000 CHF 45’000 more Call us Call us Hardware cost and support is not included in the price.
LAST WORDS • Implementation of NetClean doesn’t just mean your networks are protected from illegal material. It means your company is contributing to protect innocent children. • Free trial for two months using the hosted solution given to SWINOG members
Q&A Ethical debate… Packet Transporter vs Social Responsability
CONTACT US Pascal Seeger Grégoire Galland Project Manager Network Engineer pascal.seeger@practeo.ch gregoire.galland@practeo.ch PRACTEO SA Rue de la Gare 2 - 1030 Bussigny T +41 21 706.13.35 M +41 78 850.58.06 www.practeo.ch

Recommended

Web3.0 and mobility ......
Web3.0 and mobility ......Web3.0 and mobility ......
Web3.0 and mobility ......Mengis Raoul
 
turbocharge your php with nginx - errazudin - phpnw2010
turbocharge your php with nginx - errazudin - phpnw2010turbocharge your php with nginx - errazudin - phpnw2010
turbocharge your php with nginx - errazudin - phpnw2010Errazudin Ishak
 
Office Whitebox Presentation
Office Whitebox PresentationOffice Whitebox Presentation
Office Whitebox Presentationguest23de80
 
CADprofi4Partners
CADprofi4PartnersCADprofi4Partners
CADprofi4Partnerscgaldini
 
Family Law Magazine
Family Law MagazineFamily Law Magazine
Family Law MagazineThomas Mastromatto NMLS #145824
 
Formations PAO & 3D
Formations PAO & 3DFormations PAO & 3D
Formations PAO & 3DKIELA Consulting
 
Microsharing Im Unternehmen: Wie Dokumentieren und Lernen Teil der täglichen ...
Microsharing Im Unternehmen: Wie Dokumentieren und Lernen Teil der täglichen ...Microsharing Im Unternehmen: Wie Dokumentieren und Lernen Teil der täglichen ...
Microsharing Im Unternehmen: Wie Dokumentieren und Lernen Teil der täglichen ...Communardo GmbH
 
Capitulo 3.5: Sistemas sanitarios más cercanos
Capitulo 3.5: Sistemas sanitarios más cercanosCapitulo 3.5: Sistemas sanitarios más cercanos
Capitulo 3.5: Sistemas sanitarios más cercanosUniversitat Politècnica de València
 

Recommended

Web3.0 and mobility ......
Web3.0 and mobility ......Web3.0 and mobility ......
Web3.0 and mobility ......Mengis Raoul
 
turbocharge your php with nginx - errazudin - phpnw2010
turbocharge your php with nginx - errazudin - phpnw2010turbocharge your php with nginx - errazudin - phpnw2010
turbocharge your php with nginx - errazudin - phpnw2010Errazudin Ishak
 
Office Whitebox Presentation
Office Whitebox PresentationOffice Whitebox Presentation
Office Whitebox Presentationguest23de80
 
CADprofi4Partners
CADprofi4PartnersCADprofi4Partners
CADprofi4Partnerscgaldini
 
Family Law Magazine
Family Law MagazineFamily Law Magazine
Family Law MagazineThomas Mastromatto NMLS #145824
 
Formations PAO & 3D
Formations PAO & 3DFormations PAO & 3D
Formations PAO & 3DKIELA Consulting
 
Microsharing Im Unternehmen: Wie Dokumentieren und Lernen Teil der täglichen ...
Microsharing Im Unternehmen: Wie Dokumentieren und Lernen Teil der täglichen ...Microsharing Im Unternehmen: Wie Dokumentieren und Lernen Teil der täglichen ...
Microsharing Im Unternehmen: Wie Dokumentieren und Lernen Teil der täglichen ...Communardo GmbH
 
Capitulo 3.5: Sistemas sanitarios más cercanos
Capitulo 3.5: Sistemas sanitarios más cercanosCapitulo 3.5: Sistemas sanitarios más cercanos
Capitulo 3.5: Sistemas sanitarios más cercanosUniversitat Politècnica de València
 
Frederik Smit, Hans Moerel, Kees van der Wolf & Peter Sleegers (1999). Buildi...
Frederik Smit, Hans Moerel, Kees van der Wolf & Peter Sleegers (1999). Buildi...Frederik Smit, Hans Moerel, Kees van der Wolf & Peter Sleegers (1999). Buildi...
Frederik Smit, Hans Moerel, Kees van der Wolf & Peter Sleegers (1999). Buildi...Frederik Smit
 
Servicios de marketing y diseño en "Ruiz Prieto Asesores".
Servicios de marketing y diseño en "Ruiz Prieto Asesores".Servicios de marketing y diseño en "Ruiz Prieto Asesores".
Servicios de marketing y diseño en "Ruiz Prieto Asesores".Ruiz Prieto Asesores
 
Trabajotesismelinda
TrabajotesismelindaTrabajotesismelinda
TrabajotesismelindaBrayan MiGuel
 
Comunicación estratégica de Aqualand
Comunicación estratégica de AqualandComunicación estratégica de Aqualand
Comunicación estratégica de Aqualandkristinaah
 
Kevan Bilton Exact Target Email Marketing 2.0
Kevan Bilton Exact Target Email Marketing 2.0Kevan Bilton Exact Target Email Marketing 2.0
Kevan Bilton Exact Target Email Marketing 2.0Michael Leander
 
Fb para empresas mod3 - ud2y3
Fb para empresas mod3 - ud2y3Fb para empresas mod3 - ud2y3
Fb para empresas mod3 - ud2y3Comercial Agroalimentaria Bajo Aragón S.L.
 
Online Werbung
Online WerbungOnline Werbung
Online WerbungWolfgang Stock
 
Personal disciplina
Personal disciplinaPersonal disciplina
Personal disciplinaconvertidor
 
Visual cryptography1
Visual cryptography1Visual cryptography1
Visual cryptography1patisa
 
ProCor audience survey results
ProCor audience survey resultsProCor audience survey results
ProCor audience survey resultsprocor
 
IT-Link - Company Profile
IT-Link - Company Profile IT-Link - Company Profile
IT-Link - Company Profile IT-Link
 
Mba college in bangalore - NIBE
Mba college in bangalore - NIBEMba college in bangalore - NIBE
Mba college in bangalore - NIBENIBE ( National Institute Of Busiess Excellence )
 
24 10-12 presentation vca marco tiggelman
24 10-12 presentation vca marco tiggelman24 10-12 presentation vca marco tiggelman
24 10-12 presentation vca marco tiggelmanCBI - Centre for the Promotion of Imports from developing countries
 
Determinación de Hemoglobina A2
Determinación de Hemoglobina A2Determinación de Hemoglobina A2
Determinación de Hemoglobina A2Manuel García Galvez
 
Entity Search & Getting to Understand Freebase by Jonathan Goodman
Entity Search & Getting to Understand Freebase by Jonathan GoodmanEntity Search & Getting to Understand Freebase by Jonathan Goodman
Entity Search & Getting to Understand Freebase by Jonathan GoodmanSearch Marketing Expo - SMX
 
Monografia balonmano
Monografia balonmanoMonografia balonmano
Monografia balonmanoKarina PS
 
Wojna austriacko-pruska-wojna-austrii-z-prusami-i-wlochami-w-1866-roku
Wojna austriacko-pruska-wojna-austrii-z-prusami-i-wlochami-w-1866-rokuWojna austriacko-pruska-wojna-austrii-z-prusami-i-wlochami-w-1866-roku
Wojna austriacko-pruska-wojna-austrii-z-prusami-i-wlochami-w-1866-rokuKsięgarnia Grzbiet
 
Incentivos Fiscales a la innovación. Tipos y novedades
Incentivos Fiscales a la innovación. Tipos y novedadesIncentivos Fiscales a la innovación. Tipos y novedades
Incentivos Fiscales a la innovación. Tipos y novedadesMadrid Emprende
 
A Framework for Semantic Business Process Management in E-Government
A Framework for Semantic Business Process Management in E-Government A Framework for Semantic Business Process Management in E-Government
A Framework for Semantic Business Process Management in E-Government Institute of Information Systems (HES-SO)
 
Presentación BONCASA Construcciones
Presentación BONCASA ConstruccionesPresentación BONCASA Construcciones
Presentación BONCASA ConstruccionesBoncasa Inmobiliaria
 
New or obscure web browsers (4x3 draft 5)
New or obscure web browsers (4x3 draft 5)New or obscure web browsers (4x3 draft 5)
New or obscure web browsers (4x3 draft 5)msz
 
New or obscure web browsers 4x3 (rcsi draft 6)
New or obscure web browsers 4x3 (rcsi draft 6)New or obscure web browsers 4x3 (rcsi draft 6)
New or obscure web browsers 4x3 (rcsi draft 6)msz
 

More Related Content

Viewers also liked

Frederik Smit, Hans Moerel, Kees van der Wolf & Peter Sleegers (1999). Buildi...
Frederik Smit, Hans Moerel, Kees van der Wolf & Peter Sleegers (1999). Buildi...Frederik Smit, Hans Moerel, Kees van der Wolf & Peter Sleegers (1999). Buildi...
Frederik Smit, Hans Moerel, Kees van der Wolf & Peter Sleegers (1999). Buildi...Frederik Smit
 
Servicios de marketing y diseño en "Ruiz Prieto Asesores".
Servicios de marketing y diseño en "Ruiz Prieto Asesores".Servicios de marketing y diseño en "Ruiz Prieto Asesores".
Servicios de marketing y diseño en "Ruiz Prieto Asesores".Ruiz Prieto Asesores
 
Comunicación estratégica de Aqualand
Comunicación estratégica de AqualandComunicación estratégica de Aqualand
Comunicación estratégica de Aqualandkristinaah
 
Kevan Bilton Exact Target Email Marketing 2.0
Kevan Bilton Exact Target Email Marketing 2.0Kevan Bilton Exact Target Email Marketing 2.0
Kevan Bilton Exact Target Email Marketing 2.0Michael Leander
 
Personal disciplina
Personal disciplinaPersonal disciplina
Personal disciplinaconvertidor
 
Visual cryptography1
Visual cryptography1Visual cryptography1
Visual cryptography1patisa
 
ProCor audience survey results
ProCor audience survey resultsProCor audience survey results
ProCor audience survey resultsprocor
 
IT-Link - Company Profile
IT-Link - Company Profile IT-Link - Company Profile
IT-Link - Company Profile IT-Link
 
Entity Search & Getting to Understand Freebase by Jonathan Goodman
Entity Search & Getting to Understand Freebase by Jonathan GoodmanEntity Search & Getting to Understand Freebase by Jonathan Goodman
Entity Search & Getting to Understand Freebase by Jonathan GoodmanSearch Marketing Expo - SMX
 
Monografia balonmano
Monografia balonmanoMonografia balonmano
Monografia balonmanoKarina PS
 
Wojna austriacko-pruska-wojna-austrii-z-prusami-i-wlochami-w-1866-roku
Wojna austriacko-pruska-wojna-austrii-z-prusami-i-wlochami-w-1866-rokuWojna austriacko-pruska-wojna-austrii-z-prusami-i-wlochami-w-1866-roku
Wojna austriacko-pruska-wojna-austrii-z-prusami-i-wlochami-w-1866-rokuKsięgarnia Grzbiet
 
Incentivos Fiscales a la innovación. Tipos y novedades
Incentivos Fiscales a la innovación. Tipos y novedadesIncentivos Fiscales a la innovación. Tipos y novedades
Incentivos Fiscales a la innovación. Tipos y novedadesMadrid Emprende
 
Presentación BONCASA Construcciones
Presentación BONCASA ConstruccionesPresentación BONCASA Construcciones
Presentación BONCASA ConstruccionesBoncasa Inmobiliaria
 

Viewers also liked (20)

Frederik Smit, Hans Moerel, Kees van der Wolf & Peter Sleegers (1999). Buildi...
Frederik Smit, Hans Moerel, Kees van der Wolf & Peter Sleegers (1999). Buildi...Frederik Smit, Hans Moerel, Kees van der Wolf & Peter Sleegers (1999). Buildi...
Frederik Smit, Hans Moerel, Kees van der Wolf & Peter Sleegers (1999). Buildi...
 
Servicios de marketing y diseño en "Ruiz Prieto Asesores".
Servicios de marketing y diseño en "Ruiz Prieto Asesores".Servicios de marketing y diseño en "Ruiz Prieto Asesores".
Servicios de marketing y diseño en "Ruiz Prieto Asesores".
 
Trabajotesismelinda
TrabajotesismelindaTrabajotesismelinda
Trabajotesismelinda
 
Comunicación estratégica de Aqualand
Comunicación estratégica de AqualandComunicación estratégica de Aqualand
Comunicación estratégica de Aqualand
 
Kevan Bilton Exact Target Email Marketing 2.0
Kevan Bilton Exact Target Email Marketing 2.0Kevan Bilton Exact Target Email Marketing 2.0
Kevan Bilton Exact Target Email Marketing 2.0
 
Fb para empresas mod3 - ud2y3
Fb para empresas mod3 - ud2y3Fb para empresas mod3 - ud2y3
Fb para empresas mod3 - ud2y3
 
Online Werbung
Online WerbungOnline Werbung
Online Werbung
 
Personal disciplina
Personal disciplinaPersonal disciplina
Personal disciplina
 
Visual cryptography1
Visual cryptography1Visual cryptography1
Visual cryptography1
 
ProCor audience survey results
ProCor audience survey resultsProCor audience survey results
ProCor audience survey results
 
IT-Link - Company Profile
IT-Link - Company Profile IT-Link - Company Profile
IT-Link - Company Profile
 
Mba college in bangalore - NIBE
Mba college in bangalore - NIBEMba college in bangalore - NIBE
Mba college in bangalore - NIBE
 
24 10-12 presentation vca marco tiggelman
24 10-12 presentation vca marco tiggelman24 10-12 presentation vca marco tiggelman
24 10-12 presentation vca marco tiggelman
 
Determinación de Hemoglobina A2
Determinación de Hemoglobina A2Determinación de Hemoglobina A2
Determinación de Hemoglobina A2
 
Entity Search & Getting to Understand Freebase by Jonathan Goodman
Entity Search & Getting to Understand Freebase by Jonathan GoodmanEntity Search & Getting to Understand Freebase by Jonathan Goodman
Entity Search & Getting to Understand Freebase by Jonathan Goodman
 
Monografia balonmano
Monografia balonmanoMonografia balonmano
Monografia balonmano
 
Wojna austriacko-pruska-wojna-austrii-z-prusami-i-wlochami-w-1866-roku
Wojna austriacko-pruska-wojna-austrii-z-prusami-i-wlochami-w-1866-rokuWojna austriacko-pruska-wojna-austrii-z-prusami-i-wlochami-w-1866-roku
Wojna austriacko-pruska-wojna-austrii-z-prusami-i-wlochami-w-1866-roku
 
Incentivos Fiscales a la innovación. Tipos y novedades
Incentivos Fiscales a la innovación. Tipos y novedadesIncentivos Fiscales a la innovación. Tipos y novedades
Incentivos Fiscales a la innovación. Tipos y novedades
 
A Framework for Semantic Business Process Management in E-Government
A Framework for Semantic Business Process Management in E-Government A Framework for Semantic Business Process Management in E-Government
A Framework for Semantic Business Process Management in E-Government
 
Presentación BONCASA Construcciones
Presentación BONCASA ConstruccionesPresentación BONCASA Construcciones
Presentación BONCASA Construcciones
 

Similar to Netclean Whitebox by Practeo

New or obscure web browsers (4x3 draft 5)
New or obscure web browsers (4x3 draft 5)New or obscure web browsers (4x3 draft 5)
New or obscure web browsers (4x3 draft 5)msz
 
New or obscure web browsers 4x3 (rcsi draft 6)
New or obscure web browsers 4x3 (rcsi draft 6)New or obscure web browsers 4x3 (rcsi draft 6)
New or obscure web browsers 4x3 (rcsi draft 6)msz
 
Open Mic Webcast: IBM Sametime Audio Video Troubleshooting - 04 May 2016
Open Mic Webcast: IBM Sametime Audio Video Troubleshooting - 04 May 2016Open Mic Webcast: IBM Sametime Audio Video Troubleshooting - 04 May 2016
Open Mic Webcast: IBM Sametime Audio Video Troubleshooting - 04 May 2016Gunawan T Wicaksono
 
Malware Analysis For The Enterprise
Malware Analysis For The EnterpriseMalware Analysis For The Enterprise
Malware Analysis For The EnterpriseJason Ross
 
Yarochkin, kropotov, chetvertakov tracking surreptitious malware distributi...
Yarochkin, kropotov, chetvertakov tracking surreptitious malware distributi...Yarochkin, kropotov, chetvertakov tracking surreptitious malware distributi...
Yarochkin, kropotov, chetvertakov tracking surreptitious malware distributi...DefconRussia
 
Stanford Drupal Camp 2015 - Repelling Bots, DDOS, and other Fiends
Stanford Drupal Camp 2015 - Repelling Bots, DDOS, and other FiendsStanford Drupal Camp 2015 - Repelling Bots, DDOS, and other Fiends
Stanford Drupal Camp 2015 - Repelling Bots, DDOS, and other FiendsSuzanne Aldrich
 
Active Https Cookie Stealing
Active Https Cookie StealingActive Https Cookie Stealing
Active Https Cookie StealingSecurityTube.Net
 
(130216) #fitalk potentially malicious ur ls
(130216) #fitalk potentially malicious ur ls(130216) #fitalk potentially malicious ur ls
(130216) #fitalk potentially malicious ur lsINSIGHT FORENSIC
 
Cloud Connect Santa Clara 2013: Web Acceleration and Front-End Optimization (...
Cloud Connect Santa Clara 2013: Web Acceleration and Front-End Optimization (...Cloud Connect Santa Clara 2013: Web Acceleration and Front-End Optimization (...
Cloud Connect Santa Clara 2013: Web Acceleration and Front-End Optimization (...Strangeloop
 
WordPress Performance
WordPress PerformanceWordPress Performance
WordPress Performancedsero
 
Siruna session at Drupalcon Paris 2009
Siruna session at Drupalcon Paris 2009Siruna session at Drupalcon Paris 2009
Siruna session at Drupalcon Paris 2009Tom Deryckere
 
VoxxedDays Luxembourg - Abuse web browsers for fun & profits - Dominique Righ...
VoxxedDays Luxembourg - Abuse web browsers for fun & profits - Dominique Righ...VoxxedDays Luxembourg - Abuse web browsers for fun & profits - Dominique Righ...
VoxxedDays Luxembourg - Abuse web browsers for fun & profits - Dominique Righ...YaJUG
 
DDoS Attacks - Scenery, Evolution and Mitigation
DDoS Attacks - Scenery, Evolution and MitigationDDoS Attacks - Scenery, Evolution and Mitigation
DDoS Attacks - Scenery, Evolution and MitigationWilson Rogerio Lopes
 
Drupalcamp New York 2009
Drupalcamp New York 2009Drupalcamp New York 2009
Drupalcamp New York 2009Tom Deryckere
 
Cloud Performance: Guide to Tackling Cloud Latency [Cloud Connect - Chicago 2...
Cloud Performance: Guide to Tackling Cloud Latency [Cloud Connect - Chicago 2...Cloud Performance: Guide to Tackling Cloud Latency [Cloud Connect - Chicago 2...
Cloud Performance: Guide to Tackling Cloud Latency [Cloud Connect - Chicago 2...Strangeloop
 
The Hacking Games - A Road to Post Exploitation Meetup - 20240222.pptx
The Hacking Games - A Road to Post Exploitation Meetup - 20240222.pptxThe Hacking Games - A Road to Post Exploitation Meetup - 20240222.pptx
The Hacking Games - A Road to Post Exploitation Meetup - 20240222.pptxlior mazor
 
The Bot Stops Here: Removing the BotNet Threat - Public and Higher Ed Securit...
The Bot Stops Here: Removing the BotNet Threat - Public and Higher Ed Securit...The Bot Stops Here: Removing the BotNet Threat - Public and Higher Ed Securit...
The Bot Stops Here: Removing the BotNet Threat - Public and Higher Ed Securit...Eric Vanderburg
 
BruCon (Brussels 2011) Hacking Conference - Botnets and Browsers (Brothers in...
BruCon (Brussels 2011) Hacking Conference - Botnets and Browsers (Brothers in...BruCon (Brussels 2011) Hacking Conference - Botnets and Browsers (Brothers in...
BruCon (Brussels 2011) Hacking Conference - Botnets and Browsers (Brothers in...Aditya K Sood
 
GDPR and EA Commissioning a web site Part 6 of 8
GDPR and EA Commissioning a web site Part 6 of 8GDPR and EA Commissioning a web site Part 6 of 8
GDPR and EA Commissioning a web site Part 6 of 8Allen Woods
 

Similar to Netclean Whitebox by Practeo (20)

New or obscure web browsers (4x3 draft 5)
New or obscure web browsers (4x3 draft 5)New or obscure web browsers (4x3 draft 5)
New or obscure web browsers (4x3 draft 5)
 
New or obscure web browsers 4x3 (rcsi draft 6)
New or obscure web browsers 4x3 (rcsi draft 6)New or obscure web browsers 4x3 (rcsi draft 6)
New or obscure web browsers 4x3 (rcsi draft 6)
 
Open Mic Webcast: IBM Sametime Audio Video Troubleshooting - 04 May 2016
Open Mic Webcast: IBM Sametime Audio Video Troubleshooting - 04 May 2016Open Mic Webcast: IBM Sametime Audio Video Troubleshooting - 04 May 2016
Open Mic Webcast: IBM Sametime Audio Video Troubleshooting - 04 May 2016
 
Malware Analysis For The Enterprise
Malware Analysis For The EnterpriseMalware Analysis For The Enterprise
Malware Analysis For The Enterprise
 
Yarochkin, kropotov, chetvertakov tracking surreptitious malware distributi...
Yarochkin, kropotov, chetvertakov tracking surreptitious malware distributi...Yarochkin, kropotov, chetvertakov tracking surreptitious malware distributi...
Yarochkin, kropotov, chetvertakov tracking surreptitious malware distributi...
 
Stanford Drupal Camp 2015 - Repelling Bots, DDOS, and other Fiends
Stanford Drupal Camp 2015 - Repelling Bots, DDOS, and other FiendsStanford Drupal Camp 2015 - Repelling Bots, DDOS, and other Fiends
Stanford Drupal Camp 2015 - Repelling Bots, DDOS, and other Fiends
 
Active Https Cookie Stealing
Active Https Cookie StealingActive Https Cookie Stealing
Active Https Cookie Stealing
 
(130216) #fitalk potentially malicious ur ls
(130216) #fitalk potentially malicious ur ls(130216) #fitalk potentially malicious ur ls
(130216) #fitalk potentially malicious ur ls
 
Cloud Connect Santa Clara 2013: Web Acceleration and Front-End Optimization (...
Cloud Connect Santa Clara 2013: Web Acceleration and Front-End Optimization (...Cloud Connect Santa Clara 2013: Web Acceleration and Front-End Optimization (...
Cloud Connect Santa Clara 2013: Web Acceleration and Front-End Optimization (...
 
WordPress Performance
WordPress PerformanceWordPress Performance
WordPress Performance
 
Siruna session at Drupalcon Paris 2009
Siruna session at Drupalcon Paris 2009Siruna session at Drupalcon Paris 2009
Siruna session at Drupalcon Paris 2009
 
VoxxedDays Luxembourg - Abuse web browsers for fun & profits - Dominique Righ...
VoxxedDays Luxembourg - Abuse web browsers for fun & profits - Dominique Righ...VoxxedDays Luxembourg - Abuse web browsers for fun & profits - Dominique Righ...
VoxxedDays Luxembourg - Abuse web browsers for fun & profits - Dominique Righ...
 
DDoS Attacks - Scenery, Evolution and Mitigation
DDoS Attacks - Scenery, Evolution and MitigationDDoS Attacks - Scenery, Evolution and Mitigation
DDoS Attacks - Scenery, Evolution and Mitigation
 
Drupalcamp New York 2009
Drupalcamp New York 2009Drupalcamp New York 2009
Drupalcamp New York 2009
 
Cloud Performance: Guide to Tackling Cloud Latency [Cloud Connect - Chicago 2...
Cloud Performance: Guide to Tackling Cloud Latency [Cloud Connect - Chicago 2...Cloud Performance: Guide to Tackling Cloud Latency [Cloud Connect - Chicago 2...
Cloud Performance: Guide to Tackling Cloud Latency [Cloud Connect - Chicago 2...
 
The Hacking Games - A Road to Post Exploitation Meetup - 20240222.pptx
The Hacking Games - A Road to Post Exploitation Meetup - 20240222.pptxThe Hacking Games - A Road to Post Exploitation Meetup - 20240222.pptx
The Hacking Games - A Road to Post Exploitation Meetup - 20240222.pptx
 
Hacking Web Performance
Hacking Web Performance Hacking Web Performance
Hacking Web Performance
 
The Bot Stops Here: Removing the BotNet Threat - Public and Higher Ed Securit...
The Bot Stops Here: Removing the BotNet Threat - Public and Higher Ed Securit...The Bot Stops Here: Removing the BotNet Threat - Public and Higher Ed Securit...
The Bot Stops Here: Removing the BotNet Threat - Public and Higher Ed Securit...
 
BruCon (Brussels 2011) Hacking Conference - Botnets and Browsers (Brothers in...
BruCon (Brussels 2011) Hacking Conference - Botnets and Browsers (Brothers in...BruCon (Brussels 2011) Hacking Conference - Botnets and Browsers (Brothers in...
BruCon (Brussels 2011) Hacking Conference - Botnets and Browsers (Brothers in...
 
GDPR and EA Commissioning a web site Part 6 of 8
GDPR and EA Commissioning a web site Part 6 of 8GDPR and EA Commissioning a web site Part 6 of 8
GDPR and EA Commissioning a web site Part 6 of 8
 

More from flyingpotato

Webhosting in Africa
Webhosting in AfricaWebhosting in Africa
Webhosting in Africaflyingpotato
 
FTTX conferece Berlin December 2010 - Slides by Emanuel Kleindienst (5th Inte...
FTTX conferece Berlin December 2010 - Slides by Emanuel Kleindienst (5th Inte...FTTX conferece Berlin December 2010 - Slides by Emanuel Kleindienst (5th Inte...
FTTX conferece Berlin December 2010 - Slides by Emanuel Kleindienst (5th Inte...flyingpotato
 
Switch And Data Acquistion Overview
Switch And Data Acquistion OverviewSwitch And Data Acquistion Overview
Switch And Data Acquistion Overviewflyingpotato
 
IPv6 Best Practice
IPv6 Best PracticeIPv6 Best Practice
IPv6 Best Practiceflyingpotato
 
I Pv6 Now! Decix Tech Meeting #9
I Pv6 Now! Decix Tech Meeting #9I Pv6 Now! Decix Tech Meeting #9
I Pv6 Now! Decix Tech Meeting #9flyingpotato
 
FTTH Position von Swisscom
FTTH Position von SwisscomFTTH Position von Swisscom
FTTH Position von Swisscomflyingpotato
 
Swissix Update @ SwiNOG #16
Swissix Update @ SwiNOG #16Swissix Update @ SwiNOG #16
Swissix Update @ SwiNOG #16flyingpotato
 
IPv6 Now! (Presentation at SwiNOG #16)
IPv6 Now! (Presentation at SwiNOG #16)IPv6 Now! (Presentation at SwiNOG #16)
IPv6 Now! (Presentation at SwiNOG #16)flyingpotato
 
Guide to Key US Carrier Hotels by Hunter Newby, TelX
Guide to Key US Carrier Hotels by Hunter Newby, TelXGuide to Key US Carrier Hotels by Hunter Newby, TelX
Guide to Key US Carrier Hotels by Hunter Newby, TelXflyingpotato
 
RSS Feeds und Blogs aus Sicht des Suchmaschinenmarketings
RSS Feeds und Blogs aus Sicht des SuchmaschinenmarketingsRSS Feeds und Blogs aus Sicht des Suchmaschinenmarketings
RSS Feeds und Blogs aus Sicht des Suchmaschinenmarketingsflyingpotato
 
SwissIX Presentation @ Swinog #13
SwissIX Presentation @ Swinog #13SwissIX Presentation @ Swinog #13
SwissIX Presentation @ Swinog #13flyingpotato
 

More from flyingpotato (11)

Webhosting in Africa
Webhosting in AfricaWebhosting in Africa
Webhosting in Africa
 
FTTX conferece Berlin December 2010 - Slides by Emanuel Kleindienst (5th Inte...
FTTX conferece Berlin December 2010 - Slides by Emanuel Kleindienst (5th Inte...FTTX conferece Berlin December 2010 - Slides by Emanuel Kleindienst (5th Inte...
FTTX conferece Berlin December 2010 - Slides by Emanuel Kleindienst (5th Inte...
 
Switch And Data Acquistion Overview
Switch And Data Acquistion OverviewSwitch And Data Acquistion Overview
Switch And Data Acquistion Overview
 
IPv6 Best Practice
IPv6 Best PracticeIPv6 Best Practice
IPv6 Best Practice
 
I Pv6 Now! Decix Tech Meeting #9
I Pv6 Now! Decix Tech Meeting #9I Pv6 Now! Decix Tech Meeting #9
I Pv6 Now! Decix Tech Meeting #9
 
FTTH Position von Swisscom
FTTH Position von SwisscomFTTH Position von Swisscom
FTTH Position von Swisscom
 
Swissix Update @ SwiNOG #16
Swissix Update @ SwiNOG #16Swissix Update @ SwiNOG #16
Swissix Update @ SwiNOG #16
 
IPv6 Now! (Presentation at SwiNOG #16)
IPv6 Now! (Presentation at SwiNOG #16)IPv6 Now! (Presentation at SwiNOG #16)
IPv6 Now! (Presentation at SwiNOG #16)
 
Guide to Key US Carrier Hotels by Hunter Newby, TelX
Guide to Key US Carrier Hotels by Hunter Newby, TelXGuide to Key US Carrier Hotels by Hunter Newby, TelX
Guide to Key US Carrier Hotels by Hunter Newby, TelX
 
RSS Feeds und Blogs aus Sicht des Suchmaschinenmarketings
RSS Feeds und Blogs aus Sicht des SuchmaschinenmarketingsRSS Feeds und Blogs aus Sicht des Suchmaschinenmarketings
RSS Feeds und Blogs aus Sicht des Suchmaschinenmarketings
 
SwissIX Presentation @ Swinog #13
SwissIX Presentation @ Swinog #13SwissIX Presentation @ Swinog #13
SwissIX Presentation @ Swinog #13
 

Recently uploaded

SAP Build Work Zone - Overview L2-L3.pptx
SAP Build Work Zone - Overview L2-L3.pptxSAP Build Work Zone - Overview L2-L3.pptx
SAP Build Work Zone - Overview L2-L3.pptxNavinnSomaal
 
"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii Soldatenko"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii SoldatenkoFwdays
 
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024BookNet Canada
 
Unraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdfUnraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdfAlex Barbosa Coqueiro
 
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticsKotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticscarlostorres15106
 
CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):comworks
 
Designing IA for AI - Information Architecture Conference 2024
Designing IA for AI - Information Architecture Conference 2024Designing IA for AI - Information Architecture Conference 2024
Designing IA for AI - Information Architecture Conference 2024Enterprise Knowledge
 
Pigging Solutions in Pet Food Manufacturing
Pigging Solutions in Pet Food ManufacturingPigging Solutions in Pet Food Manufacturing
Pigging Solutions in Pet Food ManufacturingPigging Solutions
 
Streamlining Python Development: A Guide to a Modern Project Setup
Streamlining Python Development: A Guide to a Modern Project SetupStreamlining Python Development: A Guide to a Modern Project Setup
Streamlining Python Development: A Guide to a Modern Project SetupFlorian Wilhelm
 
APIForce Zurich 5 April Automation LPDG
APIForce Zurich 5 April Automation LPDGAPIForce Zurich 5 April Automation LPDG
APIForce Zurich 5 April Automation LPDGMarianaLemus7
 
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024BookNet Canada
 
WordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your BrandWordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your Brandgvaughan
 
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks..."LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...Fwdays
 
AI as an Interface for Commercial Buildings
AI as an Interface for Commercial BuildingsAI as an Interface for Commercial Buildings
AI as an Interface for Commercial BuildingsMemoori
 
DevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsDevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsSergiu Bodiu
 
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)Bun (KitWorks Team Study 노별마루 발표 2024.4.22)
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)Wonjun Hwang
 
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek SchlawackFwdays
 
Vertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering TipsVertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering TipsMiki Katsuragi
 
SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024Lorenzo Miniero
 
Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Commit University
 

Recently uploaded (20)

SAP Build Work Zone - Overview L2-L3.pptx
SAP Build Work Zone - Overview L2-L3.pptxSAP Build Work Zone - Overview L2-L3.pptx
SAP Build Work Zone - Overview L2-L3.pptx
 
"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii Soldatenko"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii Soldatenko
 
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
 
Unraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdfUnraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdf
 
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticsKotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
 
CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):
 
Designing IA for AI - Information Architecture Conference 2024
Designing IA for AI - Information Architecture Conference 2024Designing IA for AI - Information Architecture Conference 2024
Designing IA for AI - Information Architecture Conference 2024
 
Pigging Solutions in Pet Food Manufacturing
Pigging Solutions in Pet Food ManufacturingPigging Solutions in Pet Food Manufacturing
Pigging Solutions in Pet Food Manufacturing
 
Streamlining Python Development: A Guide to a Modern Project Setup
Streamlining Python Development: A Guide to a Modern Project SetupStreamlining Python Development: A Guide to a Modern Project Setup
Streamlining Python Development: A Guide to a Modern Project Setup
 
APIForce Zurich 5 April Automation LPDG
APIForce Zurich 5 April Automation LPDGAPIForce Zurich 5 April Automation LPDG
APIForce Zurich 5 April Automation LPDG
 
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
 
WordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your BrandWordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your Brand
 
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks..."LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
 
AI as an Interface for Commercial Buildings
AI as an Interface for Commercial BuildingsAI as an Interface for Commercial Buildings
AI as an Interface for Commercial Buildings
 
DevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsDevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platforms
 
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)Bun (KitWorks Team Study 노별마루 발표 2024.4.22)
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)
 
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
 
Vertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering TipsVertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering Tips
 
SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024
 
Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!
 

Netclean Whitebox by Practeo

  • 2. IN A GLANCE • a hybrid solution using BGP • based on several • using IP tunnels blacklists • doing packet inspection • robust & flexible • using a clever redirection • easily deployed mechanism and managed
  • 3. BACKGROUND AND PURPOSE • Social responsibility. A stand against child pornography is proof that your organization adopts and lives up to commonly recognized values. • Common initiative Reduce the occasions when innocent internet users might be exposed to traumatic and unlawful images. Diminish the re-victimisation of children by restricting opportunities to view their sexual abuse. Disrupt the accessibility and supply of such content to those who may seek out such images.
  • 4. LEGAL BACKGROUND • Possession of child pornography is against the law (art. 197 CPS), exception for Internet temporary files (cache) • In 2010, a law to punish surf on child porn websites should be edicted by the government (based on motion PRD Schweiger) • Although it is illegal for an operator to track and store information about who makes the accesses, it is possible to block the traffic accessing illegal content. • Long run before potential closing of child porn websites
  • 5. ONGOING TREND IN EUROPE 2004 ¦ Norway active filtering ¦ UK Gov will 2005 ¦ Sweden ¦ Denmark 2007 ¦ Finland ¦ Netherlands ¦ Switzerland 2008 ¦ France ¦ Italy http://libertus.net/censor/ispfiltering-gl.html
  • 6. PARTNER ORGANIZATIONS Technology Police NGOs
  • 7. PARTNER BLACKLISTS • Provided by the Hotline • Updated every month • Visual check of each URLs by 2 people • Full URLs up to the actual picture • Updated twice a day FAQs : www.iwf.org.uk/public/page.148.437.htm Since 2004 • Visual check of each URLs • Domain name • under discussions
  • 8. DNS BLOCKING (DNS POISONING)‫‏‬ Abuse-site www.lolita.com 77.222.40.40 Web Server Standard DNS Query: www.lolita.com Answer: 77.222.40.40 Webserver HTTP with blocking page Advantages: 192.168.1.80 - Easy to deploy - Standard services Client Computers DNS-Query DNS-blocking system Problems: nameserver - Extremely easy to bypass - Overblocking DNS Query: www.lolita.com Answer: 192.168.1.80
  • 9. IP FILTER Abuse-site www.lolita.com 77.222.40.40 Web Server ........ hostroute 12.219.53.233 null0 hostroute 142.68.240.18 null0 hostroute 159.25.16.103 null0 hostroute 159.25.16.107 null0 ....... Advantages: in core-routers - Extremely easy to deploy Problems: - Extremely crude - Massive overblocking Client Computers
  • 10. URL FILTERS Web Server ........ www.google.com www.aftonbladet.se ...... www.lolita.com Advantages: ...... - Very accurate ...... Content Filter Problems: - Almost impossible to deploy in reality - Requires deep packet inspection Client Computers
  • 11. HYBRID BLOCKING - OVERVIEW http://abozar.tripod.com/adm/ad/toolbar.css http://abutril.no.sapo.pt/adm/redirect/photo/photo/img/print_icon.gif ...... ...... www.lolita.com/pics/x.jpg ...... Web Server Advantages: - Combines the advantages of IP and URL-filter Clean traffic - Very acurate, can match Filtering proxy whole URL's - Easy to deploy - No overblocking at all - No proxying Suspect traffic ........ hostroute 12.219.53.233 filtering_proxy hostroute 142.68.240.18 filtering_proxy hostroute 159.25.16.103 filtering_proxy hostroute 159.25.16.107 filtering_proxy ....... in core-routers Client Computers
  • 12. WHITEBOX - ONSITE http://abozar.tripod.com/adm/ad/toolbar.css http://abutril.no.sapo.pt/adm/redirect/photo/photo/img/print_icon.gif ...... ...... www.lolita.com/pics/x.jpg ...... Web Server Advantages: - Combines the advantages of IP and URL-filter Clean traffic - Very acurate, can match NetClean WhiteBox whole URL's - Easy to deploy - No overblocking at all - No proxying Suspect traffic BGP routes. in ONE core-router Client Computers
  • 13. WHITEBOX – HOSTED Clean Suspect Blocked Web Server Web Server www.somedomain.com Web Server www.lolita.com SYN www.somedomain2.com NetClean Whitebox m .co ACK s it e ect sp .su ww ://w BGP Session in GRE Tunnel ttp Th GE Tunnel with a BGP Session Announce suspect ip’s (445 x /32) S T O P Client Computers
  • 14. HYBRID BLOCKING - IN COLLABORATION WITH TODAY'S SOLUTION Abuse-site www.lolita.com Web Server NetClean Whitebox DNS-Blocking System Nameserver ISP Router DNS-Blocking System Webserver Client Computers
  • 15. HYBRID BLOCKING THRU NETCLEAN WHITEBOX • Combines the advantages of IP and URL-filter • Very accurate, can match whole URL's • Easy to deploy • No overblocking at all • No proxying • Hosted or Onsite Solution
  • 16. PROOF OF CONCEPT Time frame SUNET (filtering between 12/2005 to 12/2007) PORT80 (filtering between 08/2006 to 12/2007) DGC (filtering between 08/2006 to 12/2007) CH_ISP (filtering between 08/2008 to 10/2008) Conclusions SUNET approximately 2200 blocks per day occured, PORT80 approximately 3300 blocks per day occurred DGC had 300 per day CH_ISP had 2000 detections per day.
  • 17. PROOF OF CONCEPT A deeper study of SUNET was made, where the filter was installed but not blocking anything for a month, and with the same setup the blocking was activated for a month, 800 out of 60.000 users accessed child pornography URLs, This means that around 1% of the users were actively seeking for child pornography. The number of people trying to access black-listed URLs did not decrease even after the filter was installed. The same number of users were seeking child pornography, but with less frequency due to active filtering.
  • 18. REAL TRAFFIC STATISTICS FROM CH_ISP
  • 19. REAL TRAFFIC STATISTICS FROM CH_ISP
  • 20.
  • 21. REAL TRAFFIC STATISTICS FROM CH_ISP
  • 22. 2008 PRICING – HOSTED Estimated number of users Yearly cost per user 0 to 50’000 CHF 0.30 50'001 to 100’000 CHF 0.28 101'000 to 200’000 CHF 0.26 201'000 to 400’000 CHF 0.23 401'000 to 800’000 CHF 0.19 801'000 to 1'000’000 CHF 0.15 more Call us Support is included in the price.
  • 23. 2008 PRICING – ONSITE Estimated number of users Installation cost Update fee (year 2) 0 to 50’000 CHF 12’000 CHF 4’500 50'001 to 100’000 CHF 22’500 CHF 7’500 101'000 to 200’000 CHF 37’500 CHF 12’000 201'000 to 400’000 CHF 66’000 CHF 22’500 401'000 to 800’000 CHF 114’000 CHF 37’500 801'000 to 1'000’000 CHF 144’000 CHF 45’000 more Call us Call us Hardware cost and support is not included in the price.
  • 24. LAST WORDS • Implementation of NetClean doesn’t just mean your networks are protected from illegal material. It means your company is contributing to protect innocent children. • Free trial for two months using the hosted solution given to SWINOG members
  • 25. Q&A Ethical debate… Packet Transporter vs Social Responsability
  • 26. CONTACT US Pascal Seeger Grégoire Galland Project Manager Network Engineer pascal.seeger@practeo.ch gregoire.galland@practeo.ch PRACTEO SA Rue de la Gare 2 - 1030 Bussigny T +41 21 706.13.35 M +41 78 850.58.06 www.practeo.ch