interception technology enhances application functionality
play

Interception Technology Enhances Application Functionality Jack Di - PowerPoint PPT Presentation

Sep 08, 2022 •45 likes •335 views

Interception Technology Enhances Application Functionality Jack Di Giacomo TANDsoft, Inc. Interception Technology Enhances Application Functionality Jack Di Giacomo TANDsoft, Inc. Jack Di Giacomo is a hockey fanatic President, TANDsoft,

  1. Interception Technology Enhances Application Functionality Jack Di Giacomo TANDsoft, Inc.

  2. Interception Technology Enhances Application Functionality Jack Di Giacomo TANDsoft, Inc.

  3. Jack Di Giacomo is a hockey fanatic  President, TANDsoft, Inc.  30 years of experience in the design, development and support of NonStop software solutions.  Former Tandem instructor  Specialist in intercept technology.

  4. Let’s Define Interception Technology as it Applies to Computer Programming Interception technology covers a range of techniques that can be used to alter or augment the behaviors of applications, operating systems, or other software components by intercepting function calls or system calls.

  5. Let’s define Interception Technology as it applies to computer programming The code that handles intercepted function calls, system calls, events, or messages is called a “hook” or an “intercept” library.

  6. Interception Technology is used to monitor behaviors and to modify application functions

  7. The best thing about interception... No Source Code Required! No Need to Recompile Programs!

  8. NonStop interception began with tracing Tracing is a specialized use of logging to record information about a program’s execution.  Real-time debugging  Diagnostic purposes Early uses of trace in NonStop (Tandem) were only communications-based. Remember TIL? Tandem-to-IBM Link. Remember CUP, CMI, Ptrace?

  9. NonStop interception began with tracing Early tracing utilities did not capture process events other than communication protocol inputs and outputs Next step in NonStop tracing evolution  The development of process tracing  Intercepts and logs system procedure calls  Can trace program behavior  Can modify database input-output  Process-to-process interaction  Set breakpoints on NonStop system procedures

  10. The architecture of interception

  11. The architecture of interception An intercept library… …contains intercept code and is either a user library or a dynamic link library [DLL] …intercepts Guardian or OSS calls [system and language] from program, user library, or DLLs [private, public (licensed and unlicensed)] …supports TNS, TNS/R, and TNS/E environments No source code needed. No program changes required.

  12. The architecture of interception Intercept-Dynamic

  13. The architecture of interception Intercept-Retarget

  14. Boo! Don’t be scared of Interception Technology  It is not difficult to install  It is not hard to manage  There is no massive increase in overhead  It does not slow everything down No source code needed. No program changes required.

  15. Boo! Don’t be scared of Interception Technology Utilities exist to simplify the tasks of associating, managing, and removing intercept libraries from programs.  Associate intercept library to qualified programs (automatically – whenever programs are recompiled)  Identify programs and processes using intercept library  Remove intercept library from qualified programs

  16. Boo! Don’t be scared of Interception Technology NB54000 quad-core system running J06.16 TNS (code 100, interpreted code, non-accelerated, non-native) # of system System calls Intercept calls Intercept calls calls elapsed time Retarget Dynamic 10,000 139783 152186 163190 microsec (+12403) (+23407) 1 13.9783 15.2186 16.3190 microsec (+1.2403 ) (+2.3407) No source code needed. No program changes required.

  17. Boo! Don’t be scared of Interception Technology NB54000 quad-core system running J06.16 TNS (code 100, interpreted code, accelerated, non-native) TNS/E (code 800, native) # of system System calls Intercept calls Intercept calls calls elapsed time Retarget Dynamic 10,000 100227 100258 100263 microsec (+31) (+36) 1 10.0227 10.0258 10.0263 microsec (+0.0031) (+0.0036)

  18. Interception Technology is used to monitor behaviors and to modify application functions

  19. NonStop customers use interception to extend application functionality Application Modernization  Automatic TMF protection of Enscribe files - Insert TMF transactions BEGINTRANSACTION, ENDTRANSACTION  Convert Enscribe files to SQL tables - Enscribe OPEN, READ, WRITE converted to EXEC SQL OPEN, FETCH, INSERT

  20. Interception allows NonStop customer to upgrade from non-audited Enscribe to TMF-protected SQL Application Modernization A large securities firm used interception technology to upgrade a 3 rd party brokerage application from a non-audited Enscribe environment to a TMF-protected NonStop SQL database environment. No program modifications were necessary.

  21. NonStop customers use interception to extend application functionality Development, Testing, and Trace  Process Trace - List program system procedure calls made to NonStop Kernel - Identify deadlocks and program sequencing errors - Monitor process stack usage to avoid stack overflow - Learn programming techniques (NonStop, Enscribe, multi- threading, Nowait I/O, IPC, TMF, Startup, DEFINEs, malloc)  Add Enscribe file format modifications without reprogramming

  22. NonStop customers use interception to extend application functionality System Management  Files purged or deleted accidentally can be recovered from a recycle bin  Optimize low-pin resources across all CPUs  Execute script upon process termination  Balance workload between CPUs and disks

  23. NonStop customers use interception to extend application functionality Security and Compliance  Protect sensitive data at rest (Enscribe, SQL/MP) or in transit - Replace sensitive data, such as Primary Account Number (PAN) or Personally Identifiable Information (PII) with Tokens or Format Preserving Encryption (FPE) - Achieve industry compliance (PCI 3.4, SOX, HIPAA)  Enforce security policy - Authorization, authentication, and password-change

  24. NonStop Base24 customer uses interception to protect sensitive data at rest Security and Compliance A leading payments processor and Base24 user protects its Primary Account Numbers (PANs) by using interception technology to replace the PANs with tokens for use within payment systems and related applications. No changes to the programs are necessary, and the application is fully compliant.

  25. NonStop customers use interception to extend application functionality Business Continuity  Automatic TMF protection of Enscribe files – - Insert TMF transactions BEGINTRANSACTION, ENDTRANSACTION  Replicate Enscribe unaudited files or Enscribe file modifications to a backup site  Replicate Enscribe, SQL/MP, and SQL/MX DDL changes to a backup site

  26. NonStop customers use interception to extend application functionality Virtualization and System Consolidation  Time-Zone simulation - Allows Guardian and OSS applications to operate within any virtual time zone  System Clock simulation - Allows Guardian and OSS applications to operate with any virtual system clock or current time value

  27. Large North American bank used interception to consolidate applications requiring multiple time zones into one data center Virtualization and System Consolidation The bank decided to consolidate its West-Coast operation into its East-Coast data center as a cost-savings measure. A challenge was determining how to run applications that needed to run in the Pacific Time Zone on a system with a clock set to the Eastern Time Zone. Using interception technology, the bank created virtual time zones that allow one production system to service two time zones and one disaster recovery system to service two time zones.

  28. The best thing about interception... No Source Code Required! No Need to Recompile Programs!

  29. Thank you for Attending Any Questions? Ask them now, or contact me later at jack.digiacomo@tandsoft.com FileSync Enscribe-2-SQL Toolkit OPTA SDI OPTA2000 Command Stream TMF-Audit Toolkit Replicator

Recommend

Technology Platform Layers Technology Platform Supporting Application Functionality Lecture

Technology Platform Layers Technology Platform Supporting Application Functionality Lecture

Architecture Perspective: Technology Platform Layers Technology Platform Supporting Application Functionality Lecture Objectives Look at a common layer architecture Understand the application-technology boundary Begin

253 views • 12 slides
Lawful Interception in German VoIP-Networks 22C3, Berlin Hendrik Scholz hscholz@raisdorf.net

Lawful Interception in German VoIP-Networks 22C3, Berlin Hendrik Scholz hscholz@raisdorf.net

Lawful Interception in German VoIP-Networks 22C3, Berlin Hendrik Scholz hscholz@raisdorf.net http://www.wormulon.net/ Agenda What is Lawful Interception (LI)? Terms, Laws Lawful Interception in PSTN networks Lawful Interception

658 views • 27 slides
Generic Library Interception Generic Library Interception for Improved Performance Measurement

Generic Library Interception Generic Library Interception for Improved Performance Measurement

Generic Library Interception Generic Library Interception for Improved Performance Measurement for Improved Performance Measurement and Insight and Insight Ronny Brendel, Bert Wesarg, Ronny Tschter, Matthias Weber, Thomas Ilsche, Sebastian

419 views • 13 slides
A Biologically-Inspired Algorithm for Interception I C O N S 2 0 1 9 Frances S. Chance Sandia

A Biologically-Inspired Algorithm for Interception I C O N S 2 0 1 9 Frances S. Chance Sandia

A Biologically-Inspired Algorithm for Interception I C O N S 2 0 1 9 Frances S. Chance Sandia National Laboratories is a multimission laboratory managed and operated by National Technology & Engineering Solutions of Sandia, LLC, a wholly

582 views • 13 slides
Information Technology Application Information Technology Application Select and use

Information Technology Application Information Technology Application Select and use

Information Technology Application Information Technology Application Select and use appropriate technology to accomplish a given task Use computing skills to solve problems Proficiency with computer software programs From

207 views • 8 slides
Group 10 Lab 4 Joakim, Xu and Azadeh Question When new functionality and technology is

Group 10 Lab 4 Joakim, Xu and Azadeh Question When new functionality and technology is

Group 10 Lab 4 Joakim, Xu and Azadeh Question When new functionality and technology is introduced to a product that users have been familiar with, there is always a learning curve and training cost for the users. Are there any methods or

828 views • 71 slides
End-to-End Argument Jeff Chase Duke University End-To-End Argument Application TCP Where to

End-to-End Argument Jeff Chase Duke University End-To-End Argument Application TCP Where to

End-to-End Argument Jeff Chase Duke University End-To-End Argument Application TCP Where to Place Functionality? IP Router End-to-End Argument Functionality should be implemented at a lower layer if and only if it can be

694 views • 12 slides
TRAINING PROGRAMME Lawful Interception & Data Retention ETSI/TC LI Lawful Interception

TRAINING PROGRAMME Lawful Interception & Data Retention ETSI/TC LI Lawful Interception

Statements on Standardisation (handover interface) Without standardisation each Service Provider can define its own mechanism / format for the delivery of the data (LI and/or DR) to the Monitoring Facility Without standardisation the

684 views • 57 slides
Oracle Buys Advanced Visual Technology Enhances Oracles Insight-Driven Retail Solution Suite

Oracle Buys Advanced Visual Technology Enhances Oracles Insight-Driven Retail Solution Suite

Oracle Buys Advanced Visual Technology Enhances Oracles Insight-Driven Retail Solution Suite with 3D Visual Macro Space Planning October 8, 2008 The following is intended to outline our general product direction. It is intended for

549 views • 18 slides
and Transitive Trust Jeff Jarmoc Sr. Security Researcher Dell SecureWorks About this talk

and Transitive Trust Jeff Jarmoc Sr. Security Researcher Dell SecureWorks About this talk

SSL Interception Proxies and Transitive Trust Jeff Jarmoc Sr. Security Researcher Dell SecureWorks About this talk History & brief overview of SSL/TLS Interception proxies How and Why Risks introduced by interception

744 views • 36 slides
A Study of Prefix Hijacking and Interception in the internet Hitesh Ballani, Paul Francis,

A Study of Prefix Hijacking and Interception in the internet Hitesh Ballani, Paul Francis,

A Study of Prefix Hijacking and Interception in the internet Hitesh Ballani, Paul Francis, Xinyang Zhang Presented by: Tony Z.C Huang, Adapted from slides by Hitesh Ballani Prefix Hijacking/ Interception Internet AS CIA AS U Owning

873 views • 38 slides
Trademark and Unfair Competition Law Slides 9: Functionality LAWS 7341-001 Prof. Kristelia

Trademark and Unfair Competition Law Slides 9: Functionality LAWS 7341-001 Prof. Kristelia

Trademark and Unfair Competition Law Slides 9: Functionality LAWS 7341-001 Prof. Kristelia Garca Class Outline Functionality Utilitarian (aka mechanical) functionality Aesthetic functionality Morton-Norwich

749 views • 18 slides
The Security Impact of HTTPS Interception NDSS 17 Z. Durumeric, Z. Ma, D. Springall, R.

The Security Impact of HTTPS Interception NDSS 17 Z. Durumeric, Z. Ma, D. Springall, R.

The Security Impact of HTTPS Interception NDSS 17 Z. Durumeric, Z. Ma, D. Springall, R. Barnes, N. Sullivan, E. Bursztein, M. Bailey, J. Alex Halderman, V. Paxson ! G R S N Presented by: Sanjeev Reddy o g Some Background How to TLS

696 views • 37 slides
ETSI & Lawful Interception of IP ETSI & Lawful Interception of IP Traffic Traffic Jaya

ETSI & Lawful Interception of IP ETSI & Lawful Interception of IP Traffic Traffic Jaya

ETSI & Lawful Interception of IP ETSI & Lawful Interception of IP Traffic Traffic Jaya Baloo RIPE 48 Jaya Baloo RIPE 48 May 3 Amsterdam, The May 3 Amsterdam, The Netherlands Netherlands Contents Contents Introduction to

1.08k views • 41 slides
Dependence in IV-related bytes of RC4 key enhances vulnerabilities in WPA Sourav Sen Gupta 1

Dependence in IV-related bytes of RC4 key enhances vulnerabilities in WPA Sourav Sen Gupta 1

Dependence in IV-related bytes of RC4 key enhances vulnerabilities in WPA Dependence in IV-related bytes of RC4 key enhances vulnerabilities in WPA Sourav Sen Gupta 1 Subhamoy Maitra 1 Willi Meier 2 Goutam Paul 1 Santanu Sarkar 3 Indian

749 views • 30 slides
Understanding and Characterizing Hidden Interception of the DNS Resolution Path Baojun Liu,

Understanding and Characterizing Hidden Interception of the DNS Resolution Path Baojun Liu,

Who Is Answering My Queries? Understanding and Characterizing Hidden Interception of the DNS Resolution Path Baojun Liu, Chaoyi Lu, Haixin Duan, Ying Liu, Zhou Li, Shuang Hao and MinYang DNS Resolution ISP DNS Resolver Might have

702 views • 41 slides
Irrigation consistently enhances rainfall around the Gezira Scheme in East Africa Ross E. Alter *

Irrigation consistently enhances rainfall around the Gezira Scheme in East Africa Ross E. Alter *

Irrigation consistently enhances rainfall around the Gezira Scheme in East Africa Ross E. Alter * 1 , Eun-Soon Im* 2 , Elfatih A. B. Eltahir 1 1 Massachusetts Institute of Technology (MIT), Cambridge, Massachusetts 2 Center for Environmental

168 views • 15 slides
The Interception of the Zimmermann Telegram Secret Communications Between Germany and Mexico

The Interception of the Zimmermann Telegram Secret Communications Between Germany and Mexico

The Interception of the Zimmermann Telegram Secret Communications Between Germany and Mexico Prompt America to Declare War The Zimmermann Telegram Intelligence, Diplomacy, and Americas Entry into World War I By the winter of 1916 to 1917,

439 views • 33 slides
Identifying Dormant Functionality in Malware Programs Paolo Milani Comparetti Vienna University

Identifying Dormant Functionality in Malware Programs Paolo Milani Comparetti Vienna University

Int. Secure Systems Lab Vienna University of Technology Identifying Dormant Functionality in Malware Programs Paolo Milani Comparetti Vienna University of Technology Guido Salvaneschi Polotecnico di Milano Engin Kirda Institute Eurecom

726 views • 31 slides
Understanding and Characterizing Hidden Interception of the DNS Resolution Path Baojun Liu,

Understanding and Characterizing Hidden Interception of the DNS Resolution Path Baojun Liu,

Who Is Answering My Queries? Understanding and Characterizing Hidden Interception of the DNS Resolution Path Baojun Liu, Chaoyi Lu, Haixin Duan, Ying Liu, Zhou Li, Shuang Hao and MinYang Presenter: Zhou Li (UC Irvine EECS) 1 DNS Resolution

496 views • 34 slides
Advanced Usage of Multi Site Functionality Advanced Usage of Multi Site Functionality by by

Advanced Usage of Multi Site Functionality Advanced Usage of Multi Site Functionality by by

Advanced Usage of Multi Site Functionality Advanced Usage of Multi Site Functionality by by Olli Aro Olli Aro Head of Technology & Products, Clicks and Links Ltd Head of Technology & Products, Clicks and Links Ltd About Us About

935 views • 24 slides
Interception, Replication, and Consolidation Solutions OPTA2000 Enscribe-2-SQL Toolkit clock

Interception, Replication, and Consolidation Solutions OPTA2000 Enscribe-2-SQL Toolkit clock

Interception, Replication, and Consolidation Solutions OPTA2000 Enscribe-2-SQL Toolkit clock & time-zone simulator flexible, affordable alternative for Enscribe to SQL conversion FileSync replication & synchronization software Command

537 views • 24 slides
Incident of the Week New logging functionality with insufficient access control Accessible

Incident of the Week New logging functionality with insufficient access control Accessible

Incident of the Week New logging functionality with insufficient access control Accessible to any application with internet access (i.e., almost all of them) Patching the issue is delayed because the patch needs to be tested with

765 views • 53 slides
Trademark and Unfair Competition Law Slides 10: Utilitarian v. Aesthetic Functionality LAWS

Trademark and Unfair Competition Law Slides 10: Utilitarian v. Aesthetic Functionality LAWS

Trademark and Unfair Competition Law Slides 10: Utilitarian v. Aesthetic Functionality LAWS 7341-001 Prof. Kristelia Garca Class Outline Utilitarian Functionality Aesthetic Functionality 2 Disc Factors (9 th Cir.) Whether the

287 views • 9 slides

More recommend