• 0

BlindBox: Deep Packet Inspection over Encrypted Traffic  iot.stanford.edu

2016-06-29 23:49:31 in Whitepapers and Videos by Red Letter Security

"Many network middleboxes perform deep packet inspection (DPI), a set of useful tasks which examine packet payloads. These tasks include intrusion detection (IDS), exfiltration detection, and parental filtering. However, a long-standing issue is that once packets are sent over HTTPS, middleboxes can no longer accomplish their tasks because the payloads are encrypted. Hence, one is faced with the choice of only one of two desirable properties: the functionality of middleboxes and the privacy of encryption."