topic Monsters in the Middle - Detecting HTTPS Interception in Tech Talk https://community.isc2.org/t5/Tech-Talk/Monsters-in-the-Middle-Detecting-HTTPS-Interception/m-p/26657#M1662 <P>A couple of dudes from Cloudflare gave a really cool Black Hat presentation "<A href="https://i.blackhat.com/USA-19/Wednesday/us-19-Valenta-Monsters-In-The-Middleboxes-Building-Tools-For-Detecting-HTTPS-Interception.pdf" target="_blank" rel="noopener"><EM>Monsters in the Middleboxes: Building Tools for Detecting HTTPS Interception</EM></A>". Who would have thought that HTTPS inception was so prevalent? They even Open Sourced a <A href="https://github.com/cloudflare/mitmengine" target="_blank" rel="noopener">detection tool</A>. Here are the sound bytes from the presentation:</P><P>&nbsp;</P><OL><LI>TLS-terminating middleboxes pose serious threats to network security.</LI><LI>Heuristics based on HTTP and TLS fingerprints can be effective at detecting HTTPS interception.</LI><LI>The new open source tool and Cloudfare public dashboard provide new insights into the<BR />state of HTTPS interception on the Internet.</LI></OL> Mon, 09 Oct 2023 09:18:04 GMT AppDefects 2023-10-09T09:18:04Z Monsters in the Middle - Detecting HTTPS Interception https://community.isc2.org/t5/Tech-Talk/Monsters-in-the-Middle-Detecting-HTTPS-Interception/m-p/26657#M1662 <P>A couple of dudes from Cloudflare gave a really cool Black Hat presentation "<A href="https://i.blackhat.com/USA-19/Wednesday/us-19-Valenta-Monsters-In-The-Middleboxes-Building-Tools-For-Detecting-HTTPS-Interception.pdf" target="_blank" rel="noopener"><EM>Monsters in the Middleboxes: Building Tools for Detecting HTTPS Interception</EM></A>". Who would have thought that HTTPS inception was so prevalent? They even Open Sourced a <A href="https://github.com/cloudflare/mitmengine" target="_blank" rel="noopener">detection tool</A>. Here are the sound bytes from the presentation:</P><P>&nbsp;</P><OL><LI>TLS-terminating middleboxes pose serious threats to network security.</LI><LI>Heuristics based on HTTP and TLS fingerprints can be effective at detecting HTTPS interception.</LI><LI>The new open source tool and Cloudfare public dashboard provide new insights into the<BR />state of HTTPS interception on the Internet.</LI></OL> Mon, 09 Oct 2023 09:18:04 GMT https://community.isc2.org/t5/Tech-Talk/Monsters-in-the-Middle-Detecting-HTTPS-Interception/m-p/26657#M1662 AppDefects 2023-10-09T09:18:04Z Re: Monsters in the Middle - Detecting HTTPS Interception https://community.isc2.org/t5/Tech-Talk/Monsters-in-the-Middle-Detecting-HTTPS-Interception/m-p/26694#M1664 <P>Now imagine, this within a smart building with 5G connectivity and IoT devices peppered all over the place, with fabric of the building or a Hospital.</P><P>&nbsp;</P><P>Regards</P><P>&nbsp;</P><P>Caute_cautim</P> Sun, 11 Aug 2019 01:17:25 GMT https://community.isc2.org/t5/Tech-Talk/Monsters-in-the-Middle-Detecting-HTTPS-Interception/m-p/26694#M1664 Caute_cautim 2019-08-11T01:17:25Z