Government IT Operations Analytics

Support mission-critical applications and improve situational awareness with wire data analytics.

With the ExtraHop platform for wire data analytics, government IT organizations can gain unprecedented operational insights into increasingly complex and dynamic environments. The ExtraHop platform automatically discovers and classifies applications and devices upon deployment, allowing for real-time monitoring across every tier, and delivering immediate value that grows richer over time.

ExtraHop provides industry-leading 40Gbps analysis—both on-premises and in the cloud—without impacting network performance. This real-time analysis offers several key benefits for government IT teams, including the following:

  • Trend-based alerts about performance dropoffs for proactive management of end-user experience and service-level agreement (SLA) compliance
  • Real-time SSL envelope analysis for all transactions to support encryption policy audit and tracking, and privacy regulation compliance
  • Security and privacy compliance and audit support with Application Inspection Triggers to track transactions per user, including specific users' modifications or deletions of sensitive tables or data elements.
  • Correlated cross-tier visibility for accelerated triaging and troubleshooting for both physical and virtual environments
  • Detailed application-level transaction metrics such as specific users, files, errors, and methods to help isolate the root cause of problems
  • Application Activity Maps automatically discover all network-connected devices, both physical and virtual, and their dependencies to support datacenter planning, inventorying of IT assets, and other IT management tasks

Use Cases

  • Auto-Discovery & Dependency Mapping

    During a datacenter consolidation, an online retailer used the ExtraHop platform's automatic application discovery capability to quickly and easily create an inventory of all of their servers. They identified and decommissioned unused servers without affecting customer access, saved the company $100,000, and completed their consolidation two months ahead of schedule.
  • Automated Detection of Heartbleed Vulnerabilities and Attempts

    The day of the Heartbleed announcement, a network and security ops team deployed the ExtraHop Heartbleed bundle for TLS Heartbeat Tracking, Dashboards, Client Identification and Geomaps. They watched malicious attempts to compromise their servers in real time, and immediately set blocking policies for those clients while they patched their vulnerable systems.
  • BYOD: Mobile Monitoring & Network Optimization

    A global enterprise tech company used ExtraHop's auto-discovery and application activity mapping to quantify "bring-your-own-device" (BYOD) activities on secure and guest networks, determining which applications were being accessed and implementing appropriate security controls.
  • Cloud Application Discovery and Usage Monitoring

    A medical device manufacturer discovered and monitored all on-premises and cloud-based applications, and started seeing time comparisons and usage details on a list of unsanctioned applications. They estimated saving over 200 personnel hours and $20,000 per year in SaaS application license counts and subscription fees.
  • Cross-Tier Visibility for DBAs

    A company generating 10 terabytes of SQL queries each day had very little visibility into how the databases affected overall application performance. With ExtraHop, the DBAs were able to analyze performance across tiers, pinpoint the bottleneck, and monitor all tiers going forward to ensure they're meeting their SLAs.
  • Detecting Data Exfiltration

    A large government agency needed a way to identify the source of a data leak and detect any future data exfiltration. The security team used the ExtraHop platform to identify a specific machine with abnormal DNS activity as the source of the leak, and they now use ExtraHop as an integral part of their security monitoring and analytics.
  • Infrastructure Visibility for Citrix Environments

    Following a Citrix VDI expansion, the IT team at a large research hospital used ExtraHop to pinpoint the source of intermittent login delays: a large roaming profile causing storage contention when loaded. They saved months of potential debugging time and an estimated $400,000 in consulting fees.
  • Load Balancer Optimization

    An IT organization used ExtraHop to resolve conflicts between load balancers and application servers by correlating all user, network, and application activity with advanced load balancing. The productivity gains, improved uptime, and optimizations saved $250,000 per year. A 50% performance improvement prevented $200,000 in CDN costs while accelerating application time-to-market by 30%.
  • Managing Internet Usage in Real­ Time

    A large corporate office with thousands of employees used ExtraHop to pinpoint and correct the source of intermittent service outages across the network: employees saturating the network with video streams of a World Cup match.
  • Next-Generation Database Profiling

    An insurance company used ExtraHop to pinpoint a misplaced query method that was introducing latency. They gained total visibility across their pre-existing Microsoft SQL, Oracle, DB2 and Informix databases and are now saving a minimum of $350,000 per year in personnel time.
  • Next­-Gen Network Performance Monitoring

    A multi-billion dollar financial services company used ExtraHop SSL Decryption, Precision Packet Capture, Alerts, and Dashboards to conduct real-time analysis on performance metrics across their network, cutting provisioning costs and sharing analytics with the team without compromising data security.
  • Performance for Citrix Over VPN

    The Operations team at a large professional services company was inundated with support tickets. They used ExtraHop to monitor for poor user experience and determine when the root cause was due to client-side network issues. Their team reduced support escalations from remote users by 40%.
  • SMPP Latency & Error Monitoring

    SMS is a large revenue driver for network operators, SMS aggregators, and businesses worldwide. SMS short codes are used by many businesses in their marketing campaigns to engage customers through methods such as voting campaigns, subscription requests, information requests, and more.
  • Security / Encryption Auditing

    A large enterprise with both incoming and outgoing SSL traffic used ExtraHop to view the entire set of SSL behaviors on their network, so they could see how certificates were being used, plan SSL hardware purchases, and remove unused certificates.
  • Slow Storage Backups

    A rapidly growing manufacturer used ExtraHop's correlated storage and network analysis and client performance measurements to find out why new storage backup jobs were taking longer than previous jobs. They saved $250,000 that was unnecessarily earmarked for storage platform growth and network upgrades.
  • Small Cell Deployment Monitoring

    SMS is a large revenue driver for network operators, SMS aggregators, and businesses worldwide. SMS short codes are used by many businesses in their marketing campaigns to engage customers through methods such as voting campaigns, subscription requests, information requests, and more.
  • TLS/SSL Monitoring

    A large web hosting company used ExtraHop to continuously monitor SSL traffic between the load balancer and the backend servers, and fire off alerts if any traffic was not properly re-encrypted.
  • Virtualized Application Performance Visibility

    A large tech company needed to pinpoint the source of slowdowns following a physical-to-virtual migration. The insights they gained through passively monitoring all data in motion between the clients, application, network and infrastructure components helped them improve virtualized application performance, making it even better than before migration.