Embed Size (px)
Citation preview
Host
Eric Kavanagh
CEO, The Bloor Group
Presenter
Erik Giesa
SVP, Marketing and
Business Development,
ExtraHop Networks
Analyst
Mark Madsen
Research Analyst,
Third Nature
432 TBof analysis
@40 Gbps/day
216 TBof analysis
@20 Gbps/day
108 TBof analysis
@10 Gbps/day
11 TBof analysis @1
Gbps/day
Se
SeVS
Machine Data:
System self-reported
Wire Data:
Real-time observed activity of all communications
1) Data Collection
• Unmatched scalability – Up to 40 Gbps sustained throughput. Bulk SSL decryption at line rate up to 64,000 SSL TPS using 2048-bit keys @ 40 Gbps.
2) StreamOS
• Full-stream reassembly – Requisite for true application fluency; understand sessions, flows, and transactions.
• Broad protocol support – 40+ wire protocols supported out of the box, including storage and all major databases.
3) Trigger Engine
• Automatically executes on system events through the ExtraHop trigger API.
4) Streaming Datastore
• More than 3,000 metrics that populate customizable, real-time dashboards.
5) Full Transaction Records
• Rich transaction, message, and flow data continuously gathered from across tiers, in a consistent format
1
2
3
4
5
1
2
3
5
4
Wire Data Example (a small subset)Zero modifications to applications or infrastructure are required unlike logs, machine data, or APM agents.
All data is processed, indexed, and stored in real time from live data streams off the wire.
Customer adds products to ecommerce shopping cart. All page objects and user interactions are measured and recorded in real time. Order is placed and confirmed.
Customer order and payment are received and approved confirming order above.
Application selects and writes to database. Every individual database method, statement, and associated contextual data is measured and recorded.
Behavior / ActionReal-Time Business and IT
Intelligence
• Correlate end-user performance with purchasing patterns
• Drive DevOps website optimization
• Invest in IT based on observed fact
• Guarantee SLAs
• Rapid triage and troubleshooting
• Proactively alert and warn
• Track product and customer demand
• Top sellers by location, time, and offers
• Multi-dimensional business analysis and correlation
• Business process monitoring
• Security analytics
• Tune applications and databases
• Manage application lifecycles
• Perform root cause analysis
• Detect and prevent data exfiltration
• Enable smart capacity planning
ExtraHop is the only vendor who can transform all network packets into structured Wire Data as in this example.
Delivering real business impact
It’s an anomaly. We’ve only seen it once. We can work with the
merchant to understand why it happened and attempt to
resolve it.
