To give you the best possible experience, this site uses cookies. Review our Privacy Policy and Terms of Service to learn more. Forstått!
Artwork

Video
Innhold levert av Black Hat Briefings, USA 2007 [Video] Presentations from the security conference.. Alt podcastinnhold, inkludert episoder, grafikk og podcastbeskrivelser, lastes opp og leveres direkte av Black Hat Briefings, USA 2007 [Video] Presentations from the security conference. eller deres podcastplattformpartner. Hvis du tror at noen bruker det opphavsrettsbeskyttede verket ditt uten din tillatelse, kan du følge prosessen skissert her https://no.player.fm/legal.
Player FM - Podcast-app
Gå frakoblet med Player FM -appen!
Get it on App Store Get it on Google Play

Black Hat Briefings, USA 2007 [Video] Presentations from the security conference. «
Rohit Dhamankar & Rob King: PISA: Protocol Identification via Statistical Analysis

39:52
 
Spill
Avspiller
Del
 

MP4Episoder hjem
Manage episode 152211983 series 1053194
Innhold levert av Black Hat Briefings, USA 2007 [Video] Presentations from the security conference.. Alt podcastinnhold, inkludert episoder, grafikk og podcastbeskrivelser, lastes opp og leveres direkte av Black Hat Briefings, USA 2007 [Video] Presentations from the security conference. eller deres podcastplattformpartner. Hvis du tror at noen bruker det opphavsrettsbeskyttede verket ditt uten din tillatelse, kan du følge prosessen skissert her https://no.player.fm/legal.
A growing number of proprietary protocols are using end-to-end encryption to avoid being detected via network-based systems performing Intrusion Detection/Prevention and Application Rate Shaping. Attackers frequently use well known ports that are open through most firewalls to tunnel commands for controlling zombie systems.
This presentation shows that a framework is indeed possible to identify encrypted protocols or anomalous usage of well known ports. The framework relies on performing statistical analysis on protocol packets and flows, and uniquely maps each protocol in a 10-dimensional space. Clustering algorithms are applied to accurately identify a wide variety of protocols.
This novel approach provides network and security administrators a powerful tool to use in enforcing traffic policy, even when users are actively attempting to evade these policies. An open-source implementation will be released during the presentation.
  continue reading

89 episoder

#Video
Artwork

Rohit Dhamankar & Rob King: PISA: Protocol Identification via Statistical Analysis

Black Hat Briefings, USA 2007 [Video] Presentations from the security conference.

published

Spill Avspiller
iconDel
 
MP4Episoder hjem
Manage episode 152211983 series 1053194
Innhold levert av Black Hat Briefings, USA 2007 [Video] Presentations from the security conference.. Alt podcastinnhold, inkludert episoder, grafikk og podcastbeskrivelser, lastes opp og leveres direkte av Black Hat Briefings, USA 2007 [Video] Presentations from the security conference. eller deres podcastplattformpartner. Hvis du tror at noen bruker det opphavsrettsbeskyttede verket ditt uten din tillatelse, kan du følge prosessen skissert her https://no.player.fm/legal.
A growing number of proprietary protocols are using end-to-end encryption to avoid being detected via network-based systems performing Intrusion Detection/Prevention and Application Rate Shaping. Attackers frequently use well known ports that are open through most firewalls to tunnel commands for controlling zombie systems.
This presentation shows that a framework is indeed possible to identify encrypted protocols or anomalous usage of well known ports. The framework relies on performing statistical analysis on protocol packets and flows, and uniquely maps each protocol in a 10-dimensional space. Clustering algorithms are applied to accurately identify a wide variety of protocols.
This novel approach provides network and security administrators a powerful tool to use in enforcing traffic policy, even when users are actively attempting to evade these policies. An open-source implementation will be released during the presentation.
  continue reading

89 episoder

#Video

Alle episoder

×
 
Loading …

Velkommen til Player FM!

Player FM scanner netter for høykvalitets podcaster som du kan nyte nå. Det er den beste podcastappen og fungerer på Android, iPhone og internett. Registrer deg for å synkronisere abonnement på flere enheter.

 

Lytt til 500+ tema
Player FM - Podcast-app
Gå frakoblet med Player FM -appen!
Get it on App Store Get it on Google Play

Hurtigreferanseguide

Topp podcaster
Indre bane
VG Sporten med Brenne og Borud
NIH-podden
E24-podden
Misjonen med Antonsen og Golden
Radioresepsjonen
Filmpolitiets podkast
Filmfrelst
Dine Penger - Pengerådet
Bekk Open Podcast
Ekko
Dagsnytt 18
Mentaltrener Podcasten
Rekommandert
Uillustrert Vitenskap
Lørdagsrådet
Historier fra virkeligheten
Truecrimepodden
Gåten i Isdalen
To hvite menn
Player FM logo
Hjelp/FAQ | Oppgrader | Advertise
Kunst|Business|Komedie|Økonomi|Underholdning|Nyheter|Politikk|Religion
Vitenskap|Fotball|Sport|Historiefortelling|Teknologi|True Crime
Copyright 2024 | Sitemap | Personvern | Vilkår for bruk | | opphavsrett
Episode being played series thumbnail
icon icon
Hastighet
Serier innstillinger
1x
1x
Volume
100%
icon
icon icon
/

Se Player FM i ...
Player FM
Browser
Chrome
Safari
Firefox