Researchers spot malware in encrypted traffic
Cisco researchers have managed to spot malware in encrypted traffic, making a new development in the fight against malware. A group of Cisco researchers have managed to sport malicious traffic in encrypted traffic without any need to decrypt data. The discovery could pave the way for products that can secure networks while maintaining privacy. According to a paper published on Arxiv, malware within encrypted streams gives out enough clues to allow researchers to spot them. Traffic encrypted using TLS, is increasingly used by criminals to circumvent security products. "The use of TLS by malware poses new challenges to network threat detection because traditional pattern-matching techniques can no longer be applied to its messages," Blake Anderson, Subharthi Paul, and David McGrew said in their research paper.
Jul-9-2016, 08:00:36 GMT