UK Police IT Organisation (PITO) on Network Critical
Network Forensics - CSO's Crime Scene Kit for CALEA, Compliance and Security (by J. Scott Haugdahl)

Skyriver Communications on Solera Networks

“It was about a quarter of the cost of anything else I had seen on the market.”

Brad Slavin, Vice President of Engineering and Network Operations, Skyriver Communications, Inc.


SkyriverCustomer Profile - Headquartered in San Diego CA, Skyriver Communications is an innovative connectivity services provider, offering a complete set of converged communication solutions to enterprise, small-medium businesses, and hospitality markets. Through its trusted and reliable wireless broadband, hotspot, business continuity, IT services, and ISP offerings, Skyriver is uniquely qualified to meet the full spectrum of mission critical connectivity, implementation and support needs of today’s fast paced communications environment.

Solera_logoVendor Profile - Solera Networks develops and markets high performance storage appliances and storage and application software and hardware solutions for the emerging Network Management and Network Security Markets. Solera's flagship product, the DS Series, is a suite of network packet recorder appliances that far surpass the gigabit barrier. Acting as a large network buffer, the DS Series integrates seamlessly with existing network applications, providing network managers a complete and accurate picture of network activity and performance.


Customer Requirement:

Skyriver needed a cost-effective solution to quickly bring them into CALEA compliance. Solera Networks provided its Solera CALEA Appliance to enable Skyriver to provide lawful intercepts or "wire taps" when requested by Law Enforcement Agencies.

Solera Solution:

Solera Networks DS 500

Benefits:

• Met requirements to be CALEA compliant
• Can perform a lawful tap request at any time
• Device also helps optimize their network performance


TiVo for Your Network

“It's my expectation that when using the device to perform network analysis, if there is an event, its going to really reduce our time to respond. It seems that we started out looking for a hunting knife but ended up getting a Swiss Army Knife.”

Odiogo_listen_now_77x18 Click below to listen to a live interview with Brad Slavin, Vice President of Engineering and Network Operations of Skyriver Communications, Inc.








Overview

Skyriver is a fixed-wireless broadband carrier located in San Diego, California, providing enterprise grade high speed internet access to businesses throughout Southern California. In addition to enterprise grade bandwidth, they provide typical Internet Service Provider (ISP) solutions including, web-hosting, spam filtering and e-mail intrusion detection services. They also provide on-site network services and full infrastructure management and maintenance as well as deploy and maintain WiFi hotspots for hotels and other hospitality organizations. Skyriver has 40 employees located in Los Angeles, San Diego and Riverside, California.

Challenge

In 1994, the U.S. passed a law called The Communications Assistance for Law Enforcement Act (CALEA). This act states that communications providers, including telephone companies and network and service providers must have the ability to tap any communication or data transfer carried over their networks when they receive a request from a Law Enforcement Agency—a procedure called lawful intercept. For a small to medium ISP, this mandate can be an overwhelming prospect and the implication of the act seems to call for complicated, very expensive solutions.

“There were a lot of nebulous unknowns about the law and we had to educate ourselves to find out what our responsibility actually was,” says Brad Slavin, Vice President of Engineering and Network Operations for Skyriver. Once the rules were clarified, Slavin's role was to do a comprehensive due diligence and feasibility study by interviewing a number of network traffic monitoring vendors and Trusted Third Parties (TTP). “To become compliant we needed a vendor who understood what the requirements were, how they were going to impact an organization like ours and how to best respond to any lawful intercept requests we receive from approved agencies,” he said.

“We looked at about nine different vendors,” Slavin said. “Most of their solutions were coming in at $40k or more and we couldn't justify that price for the sole purpose of becoming CALEA compliant. Also, the way they were requiring us to architect the network just didn't make sense. One of the specifics most of the TTPs and appliance vendors had was their requirement to install one appliance at each Internet egress in order to be compliant. And from my perspective, there had to be a better way.”

Solution

Fortunately, Solera Networks was among the nine vendors Skyriver evaluated. Not only did Solera Networks provide an appliance to help Skyriver meet the CALEA regulations, the appliance also provided the added benefit of allowing Skyriver to monitor their own network traffic and improve performance for their customers—at a fraction of the cost of the other vendors.

Skyriver found that Solera Networks' complete packet capture and stream-to-storage technology provides an elegantly simple CALEA compliance solution with full traffic recording, filtering and detail logging at a price point vastly lower than the competition. Solera Networks' appliances, combined with standard packet analysis software, provides everything necessary to capture, analyze and preserve all digital communication sessions – VoIP, e-mail, chat, instant messaging, HTTP sessions, etc. – along with related intercept information.

The 1U Solera CALEA Appliance captures at OC12 data rates, has onboard storage capacity of 800 GB, and is designed to be deployed via a SPAN port or network TAP, allowing for streamlined and invisible network packet capture.

Once the data is captured, the network traffic can be accessed by LEAs through either an industry standard pcap file, a virtual network interface (Ethernet) device or a regenerated stream of packets to external network segments feeding external appliances or applications. Solera Networks also integrates with iSCSI and Fibre Channel providing numerous options for external storage.

“When I initially learned of Solera Networks and its CALEA solution, I was stunned at the pricing,” Slavin said. “It was about a quarter of the cost of anything else I had seen on the market and for a while I actually doubted they would be able to deal with the compliance issues in a solution that cost less than $10K. I was pleasantly surprised.”

Result

“The bottom line is we have received our response from the FCC,” Slavin said. “We have been stamped and signed off as a ‘CALEA Compliant' ISP and we are ready to respond in any of our markets to a lawful intercept request at the drop of a hat!”

Lawful intercept was the initial reason Skyriver implemented Solera Networks' appliance, but this is only one area where Solera Networks solutions improve a company's network performance. With full capture, filter and playback capabilities combined with other standard network analysis tools, Solera Networks gives Skyriver a comprehensive historical engine to improve network security, enable network forensics and analysis, and improve overall network performance. In addition to reconstructing communications, Solera Networks solutions can be used to detect intrusions and determine sources of high bandwidth use or erratic activity.

“It's my expectation that when using the device to perform network analysis, if there is an event, its going to really reduce our time to respond. It seems that we started out looking for a hunting knife but ended up getting a Swiss Army Knife. Because it provides a complete and accurate picture of network activity and performance, this is going to handle a lot more of our day-to-day networking needs than being a dumb box that just sits there, waiting for a specific lawful intercept request that may or may not happen any time soon,” he said.

“From a capture prospective this is not only a CALEA compliance solution but also a robust and cost-effective solution,” Slavin said. “We've really shifted from an ‘I wish I could' perspective for our engineers to a ‘Hey, I know we can do this!'”


Continue reading other LoveMyTool posts on Solera Networks »

Comments