Application Signatures
Application Signatures
Open Source vs Commercial Signatures
Netify's open-source signature list comprises 200 application definitions, providing a transparent and collaborative approach to flow classification and cybersecurity, tailored for enthusiasts and developers. It gives a solid foundation for understanding the bulk traffic traversing a network.
On the other hand, Netify's commercial application signature list extends even further, with over 2,300 applications, making it a robust choice for businesses, enterprises, and OEM/edge gateway partners. This extensive list excels in detecting a wide range of threats and is designed to evolve with emerging cybersecurity challenges. Together, these offerings cater to both community-driven initiatives and the sophisticated needs of organizations seeking reliable DPI and classification solutions.
Access and License to Use
Anyone is permitted to use the Open Source application signature list. The signature list is packaged with all versions of the Netify agent and can be found in /etc/netify.d/netify-apps.conf.
The commercial application list is provided to integrators and Netify Informatics subscribers.
In-Agent Updates
In order to access in-agent updates, check the main Netify configuration file, /etc/netifyd.conf. The enable_sink attribute must be set to yes.
[netifyd]
enable_sink = yesIntegrator API
This method is restricted to Netify clients who have been issued a Netify API Vendor key. Documentation to pull application signature updates from the Netify API can be found here.
sudo systemctl reload netifydContinuous Updates
The application signature list is continuously being updated. It is recommended to check for updates as frequently as every day and at least every month.