Decrypting SSL/TLS traffic for hidden threats detection

04/16/2019
by   Tamara Radivilova, et al.
0

The paper presents an analysis of the main mechanisms of decryption of SSL/TLS traffic. Methods and technologies for detecting malicious activity in encrypted traffic that are used by leading companies are also considered. Also, the approach for intercepting and decrypting traffic transmitted over SSL/TLS is developed, tested and proposed. The developed approach has been automated and can be used for remote listening of the network, which will allow to decrypt transmitted data in a mode close to real time.

READ FULL TEXT

page 1

page 2

page 3

page 4

research
01/31/2023

Detecting Unknown Encrypted Malicious Traffic in Real Time via Flow Interaction Graph Analysis

In this paper, we propose HyperVision, a realtime unsupervised machine l...
research
03/05/2020

DANTE: A framework for mining and monitoring darknet traffic

Trillions of network packets are sent over the Internet to destinations ...
research
12/15/2017

Network Intell: Enabling the Non-Expert Analysis of Large Volumes of Intercepted Network Traffic

In criminal investigations, telecommunication wiretaps have become a com...
research
08/06/2020

Activity Detection from Encrypted Remote Desktop Protocol Traffic

An increasing amount of Internet traffic has its content encrypted. We a...
research
07/25/2019

Decrypting live SSH traffic in virtual environments

Decrypting and inspecting encrypted malicious communications may assist ...
research
04/09/2019

Malicious Overtones: hunting data theft in the frequency domain with one-class learning

A method for detecting electronic data theft from computer networks is d...

Please sign up or login with your details

Forgot password? Click here to reset