Network Security: Detailed info on IDS, IPS and encrypted traffic

Subject:	IDS, IPS and encrypted traffic
Date:	Thu, 02 Dec 2004 08:15:07 +0100

Subject:

IDS, IPS and encrypted traffic

Date:

Thu, 02 Dec 2004 08:15:07 +0100

Hello everybody,

I’ve been looking around the net for a while, trying to find some theoretical and practical approaches to solve the problem of analyzing encrypted traffic.

I know, that there is a need to decrypt the traffic before analyzing it, but I haven’t found any concrete solutions neither for NIDS nor for HIDS yet. Some HIDS vendors announced that their products are capable of analyzing encrypted traffic, but I didn’t succeed to find any details about that.

Does anybody know some products or papers which deal with the problem of 
analyzing encrypted traffic?

Thanks in advance,
 Daniel Hamburg


--------------------------------------------------------------------------
Test Your IDS

Is your IDS deployed correctly? Find out quickly and easily by testing it with real-world attacks from CORE IMPACT. Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708 to learn more. --------------------------------------------------------------------------

<Prev in Thread]	Current Thread	[Next in Thread>
IDS, IPS and encrypted traffic, Daniel Hamburg <= Re: IDS, IPS and encrypted traffic, neil Re: IDS, IPS and encrypted traffic, Alex Butcher, ISC/ISYS Re: IDS, IPS and encrypted traffic, Jet Re: IDS, IPS and encrypted traffic, Brad Boeckmann Re: IDS, IPS and encrypted traffic, Alexander Klimov Re: IDS, IPS and encrypted traffic, Jose Maria Lopez RE: IDS, IPS and encrypted traffic, Eric McCarty

<Prev in Thread]

Current Thread

[Next in Thread>

Previous by Date:	RE: Foolin an IDS ?, Shaiful
Next by Date:	RE: IDS requirement, Brito, Nelson (ISS Brazil)
Previous by Thread:	Port Speed setting in Cisco IDS 4235, mavericks2
Next by Thread:	Re: IDS, IPS and encrypted traffic, neil
Indexes:	[Date] [Thread] [Top] [All Lists]