E-Detective is a real-time Internet interception, monitoring and forensics system that captures, decodes and reconstructs various types of Internet traffic. It is commonly used for organization Internet and behavioral monitoring, auditing, record keeping, forensics analysis and investigation as well as for legal and lawful interception by lawful enforcement agencies (LEA) such as Police Intelligence, Military Intelligence, Cyber Security Department, National Security Agencies, Criminal Investigation Agencies, Counter Terrorism Agencies etc. It also provides compliance solution for many standards or acts like Sarbanes Oxley Act (SOX), HIPAA, GLBA, SEC, NASD, E-Discovery and many others local customized acts.

Diagram 1: Lawful Interception - Mass Interception

Diagram 1 shows the ISP Lawful Mass Interception solution. This solution consist of Advanced-Distributed Tap or Data Access Switch which capture and collect huge amount of traffic (10 G) from the ISP infrastructure network (exchange point) and distribute the traffic by IP domain or subnet basis to multiple E-Detective systems for real-time or on the fly content decoding and reconstruction. E-Detective systems will immediately reconstruct the collected network packets (traffic) back to its original content format. Each E-Detective system is capable to handle up to 500 Mbps throughput instantaneously. The Centralized Management Server (CMS) will be used to manage all the E-Detective systems implemented.

Central Management Server (CMS) is high performance Linux based network appliance that extends the reach of E-Detective across your huge enterprise or even ISP scale networks, providing real-time centralized reporting, searching and querying as well as alert and notification functions. CMS aggregates and manage cluster of distributed E-Detective systems (which can be at the same location or in multiple locations) in real-time, facilitate single and hierarchical enterprise view across your network. 

Central Management Server is specially designed to aggregate data hierarchically from multiple or distributed E-Detective systems for ultimate scalability and deployment flexibility across various organization-specific or ISP scale network topologies and infrastructures. The CMS design also allows hierarchical analysis or investigation operation and visibility which includes querying, searching, alerting, notifying and reporting extend to multiple E-Detective systems. This provides a single point of access to multiple E-Detective systems.

 Lawful Enforcement Officers will have the access to the CMS and E-Detective systems which contain the reconstructed data and evidence either locally or through a secure connection remotely.

Diagram 2: Lawful Interception - Target Interception

Diagram 2 shows the ISP Target IP Lawful Interception solution. That means specific target IP addresses can be pre-configured in the filter list on the Advanced-Distributed Tap or Data Access Switch. Only the target IP address traffic will be captured and distributed to E-Detective system(s). Instantly, E-Detective system(s) will decode and reconstruct the captured traffic back to its original content format. Depending on the targeted IP addresses and amount traffic throughput intercepted, one or more E-Detective systems can be deployed. If more than one E-Detective system is deployed, CMS is to be implemented for centrally manage the E-Detective system. Lawful Enforcement Officers will have the access to the CMS and E-Detective systems which contain the reconstructed data and evidence either locally or through a secure connection remotely.

Decision Group E-Detective Series of Solutions - CLICK HERE

Sales and Marketing:

Email - decision@decision-groups.com

Technical Support and Solutions:

Email - decision@decision-groups.com

Request for Demo Software? Please contact our Sales.