Lack of visibility into encrypted traffic still causing trouble

Encrypting corporate data and Internet traffic is recommended as a leading way to help check attackers who manage to gain access to sensitive systems. However, the solution is a double-edged sword.

On the one hand an attacker won’t be able to do much with properly encrypted data. On the other hand, infosec pros will have a more difficult time scanning traffic for suspicious activity.

David Holmes of F5 Networks points out this dilemma  in  a column relating to a new encryption cipher released by Google between the Chrome v50 browser and Google services. Some Infosec pros will likely find that their web gateway software doesn’t support the new cipher so can’t see data scanned between clients and Gmail. The choice, Holmes said, is either whitelist gmail –and risk not catching malware — or disable access to Google services like Google search.

Who’s at fault? Perhaps Google, which doesn’t always tell security vendors of upcoming Chrome changes. Perhaps the gateway vendor for not keeping up on technology, because the cipher Google added isn’t new.

This is getting important, Holmes notes, because an increasing amount of outbound network traffic is encrypted. Is a packet legitimately encrypted by an employee, or by malware? Who knows? It’s only now that security vendors are starting to look at the problem and release solutions. It would help if the info security industry worked closer together. Meanwhile CISOs have to pay more attention to this problem.

Read the full column here

Would you recommend this article?

Share

Thanks for taking the time to let us know what you think of this article!
We'd love to hear your opinion about this or any other story you read in our publication.


Jim Love, Chief Content Officer, IT World Canada

Featured Download

Howard Solomon
Howard Solomon
Currently a freelance writer, I'm the former editor of ITWorldCanada.com and Computing Canada. An IT journalist since 1997, I've written for several of ITWC's sister publications including ITBusiness.ca and Computer Dealer News. Before that I was a staff reporter at the Calgary Herald and the Brampton (Ont.) Daily Times. I can be reached at hsolomon [@] soloreporter.com

Featured Articles

Cybersecurity in 2024: Priorities and challenges for Canadian organizations 

By Derek Manky As predictions for 2024 point to the continued expansion...

Survey shows generative AI is a top priority for Canadian corporate leaders.

Leaders are devoting significant budget to generative AI for 2024 Canadian corporate...

Related Tech News

Tech Jobs

Our experienced team of journalists and bloggers bring you engaging in-depth interviews, videos and content targeted to IT professionals and line-of-business executives.

Tech Companies Hiring Right Now