Comments on: DPI can be misused – so can a hammer http://dpi.priv.gc.ca/index.php/essays/dpi-can-be-misused-%e2%80%93-so-can-a-hammer/ Essays on Deep Packet Inspection Tue, 29 Jun 2010 17:04:28 +0000 http://wordpress.org/?v=2.9.1 hourly 1 By: Chris Lewis http://dpi.priv.gc.ca/index.php/essays/dpi-can-be-misused-%e2%80%93-so-can-a-hammer/comment-page-1/#comment-143 Chris Lewis Fri, 09 Apr 2010 02:49:49 +0000 http://dpi.priv.gc.ca/?p=258#comment-143 The reality is that it's almost exactly the reverse. Most of the egregious problems we see, DNS redirections, advertising substitution, penalizing certain sites et. al. isn't done with DPI, it's done with other far simpler techniques. Such as QOS, priority management, local DNS substitution and IP and port redirection/blackholing. Most of which are simple and relatively inexpensive to implement even in very large networks. DPI requires considerable investment, and the volumes involved are huge. For the most part, the primary incentive for doing it is for automated detection, analysis and blocking malicious packets that either endanger the ISP's network, or their users, or both. As I said, these (QOS, DPI, port redirection, DNS redirection) are all just tools. As a society, we need to decide what these tools should be allowed to do/not do, _not_ which tools are used. The reality is that it’s almost exactly the reverse. Most of the egregious problems we see, DNS redirections, advertising substitution, penalizing certain sites et. al. isn’t done with DPI, it’s done with other far simpler techniques. Such as QOS, priority management, local DNS substitution and IP and port redirection/blackholing. Most of which are simple and relatively inexpensive to implement even in very large networks. DPI requires considerable investment, and the volumes involved are huge. For the most part, the primary incentive for doing it is for automated detection, analysis and blocking malicious packets that either endanger the ISP’s network, or their users, or both.

As I said, these (QOS, DPI, port redirection, DNS redirection) are all just tools. As a society, we need to decide what these tools should be allowed to do/not do, _not_ which tools are used.

]]> By: M B A http://dpi.priv.gc.ca/index.php/essays/dpi-can-be-misused-%e2%80%93-so-can-a-hammer/comment-page-1/#comment-113 M B A Fri, 07 Aug 2009 06:30:32 +0000 http://dpi.priv.gc.ca/?p=258#comment-113 I certainly agree with you but dealing with thee threats is also possible without DPI. and right now the ISPs are not really using this tehcnology for that exactly. instead they`re perverting it and using it to hinder their user's (other ISP's users fot that matter ) internet experience. choosing in the user's place what he can use or can't use with his purchased bandwidth. and no body is stopping them. As somebody said is post canada allowed to open everyone's mail and check it to see if it's dangerous or important enough to deliver it? the answer is obviously no. It is true most certainly that P2P traffic can certainly be cumbersom (Bittorrent for instance fills up conection queues very quickly-- depending) but there are other methods to do so. QOS and Priority Queus are one of these (personallyI use that to balance the traffic in my network). should I need an SSH connection I can without halting any P2P traffic as I gave SSh high priority and if I don;t ... well P2P traffic can flow as quick as it can. and everybody is happy. Which is not the case with ISPs. Actualy only one taht is afecting others using his position as leader in that market. If some ISP decided to put that for his client I don;t see why other ISP`s client should suffer from that. I certainly agree with you but dealing with thee threats is also possible without DPI.
and right now the ISPs are not really using this tehcnology for that exactly. instead they`re perverting it and using it to hinder their user’s (other ISP’s users fot that matter ) internet experience. choosing in the user’s place what he can use or can’t use with his purchased bandwidth. and no body is stopping them.
As somebody said is post canada allowed to open everyone’s mail and check it to see if it’s dangerous or important enough to deliver it?
the answer is obviously no.

It is true most certainly that P2P traffic can certainly be cumbersom (Bittorrent for instance fills up conection queues very quickly– depending) but there are other methods to do so. QOS and Priority Queus are one of these (personallyI use that to balance the traffic in my network). should I need an SSH connection I can without halting any P2P traffic as I gave SSh high priority and if I don;t … well P2P traffic can flow as quick as it can. and everybody is happy.
Which is not the case with ISPs. Actualy only one taht is afecting others using his position as leader in that market. If some ISP decided to put that for his client I don;t see why other ISP`s client should suffer from that.

]]>