ASN-DPI details protocol metadata and application identification

ASN-DPI adds packet-level protocol metadata and application identification to enable real time visibility into applications, protocols and traffic categories across enterprise and telecom networks, helping IT and security teams monitor performance and enforce policies.

Research overview

The blog describes ASN-DPI as a Deep Packet Inspection (DPI) capability that identifies more than 2,700 applications and 9,000 subcategory applications while extracting protocol metadata at line rate.

The capability is positioned for use across mobile cores, enterprise data centers and cloud environments to address large, encrypted and dynamic traffic volumes.

Key findings

ASN-DPI provides application and category identification for types such as video, audio, gaming, file transfer, chat, Artificial Intelligence (AI) platforms and Virtual Private Network (VPN) services, and reports session-level KPIs including bandwidth, latency and packet retransmissions.

Protocol metadata outputs cited in the blog include Hypertext Transfer Protocol (HTTP) hostnames and user-agent values, which the vendor says support subscriber analytics, Root Cause Analysis (RCA) and anomaly detection.

Technical breakdown

Deep Packet Inspection (DPI), as described, examines payload data in addition to headers to classify application behavior and protocol usage beyond basic flow counters.

ASN-DPI extracts protocol-specific metadata without full payload capture at line rate, aiming to indicate which entity initiated traffic, the context for the flow and effects on service delivery.

Operational impact

For telecom operators, the blog states ASN-DPI enables subscriber-aware visibility and real-time monitoring of application usage and resource consumption in mobile networks.

For enterprises and data centers, the capability is presented as a tool to track application bandwidth use, detect latency and packet loss, locate bottlenecks and enforce acceptable-use and compliance policies.

Update mechanism

The capability supports dynamic updates to detection engines and protocol signatures without service interruption or redeployment, enabling ongoing adaptation to new applications and protocols.

This “Blog Signals brief” is a fact-based summary of the vendor blog.