[Case Study] ThreatEye Offers New Twist on Suricata with Accolade

Suricata is a well known, open-source network threat detection engine developed and maintained by the Open Information Security Foundation (OISF). While Suricata has been deployed extensively, security professionals recognize that its signature-based mechanism for intrusion detection can be augmented. ThreatEye—a network detection platform that enhances Suricata via machine-learning (ML) and hardware-based host CPU offload—is designed to improve the efficacy of network security. ThreatEye is developed and sold by Counterflow AI with essential host CPU offload capability provided by Accolade Technology.

Read the full case study below.Third Eye Suricata Accolade Technology

SUMMARY

Emerging network detection company utilizes unique CPU offload techniques from Accolade Technology to enhance the efficacy of its security appliance.

KEY CHALLENGES

  • Provide 100% reliable packet recording and flow shunting capability for Suricata in an industry-standard server appliance

WHY ACCOLADE?

  • Reliable technology partner with established track record in the market place for 1 – 100G CPU offload adapters
  • Unique flow shunting capability that works seamlessly with Suricata

ANIC FEATURES USED

  • 100% packet capture
  • Flow Classification
  • Flow Shunting
  • Nanosecond Precision Timestamping

[Tech Brief] Download ThreatEye Case Study

Host CPU Offload Product Features Summary

wdt_ID Speed 1G 10G 10G 10G 10G/40G 10G/40G 100G 100G 100G
1 Model 4Ku 20ku 40ku 40kq 80ku ATLAS-1100 Service Node ANIC-200KFlex ANIC-100Kq ANIC-200Kq
2 Port/Type 4X1G SFP 2X10G SFP+ 4X10G SFP+ 1X40G QSFP+ 4X10G SFP+ 2X40G QSFP+ 8X10G SFP+ 4x10G SFP+ 1x40G QSFP+ 2x100G QSFP28 2x40G QSFP28 1X100G QSFP28 2X100G QSFP28
3 PCIe Interface Gen3 x8 Gen3 x8 Gen3 x8 Gen3 x8 Gen3 x8 Gen3 x8 Gen3 x16 Gen3 x16 Gen3 x16
4 Dimensions(H x L inches) 4.25 x 6.5   4.25 x 6.25 4.25 x 6.25 4.25 x 6.25 4.25 x 6.25 1.75 x12.28x14 4.25 x 6.5 4.25 x 10.5 4.25 x 10.5
5 Memory 32MB 4G 4G 4G 4G 16/32G 8G 12G 12G
6 Timestamp 5.7 nS 5.7 nS 5.7 nS 5.7 nS 5.7 nS 5.7 nS 4 nS 4 nS 4 nS
7 100% Packet
Capture
8 Gigamon, AristaTimestamp
9 Packet Merging
10 Packet Parsing

About Accolade

Accolade is the technology leader in FPGA-based Host CPU Offload and 100% Packet Capture PCIe NIC’s and Scalable 1U Platforms. Accolade’s line of 1-100GE products enable 100% packet capture, flow classification, flow shunting, deduplication, packet filtering and more. Our customers are global leaders in network monitoring & cybersecurity applications as well as in the network test and measurement, telecom and video stream monitoring markets.

FPGA Acceleration Features

100% Packet Capture | Flow Classification | Flow Shunting | Precise Time Stamping | Packet Merging | Packet Slicing | Packet Parsing | Packet Filtering | Deduplication | Host Packet Buffer | Packet Steering | Direct Memory Access (DMA) | Statistics (RMON1)

Free Product Evaluation

Resolve all your host CPU offload bottlenecks. Share Your Technical Requirements with our FPGA and software experts to tailor the optimal solution. Accolade offers a 60 day free product evaluation for qualified customers to fully test and evaluate our products.