Detecting Malware in encrypted https traffic
A fun paper from Cisco. Using a sandbox, they generate a large data set of connections from malware to the internet that uses https. They compare this with a set of https traffic data from an enterprise network (I assume Cisco’s!) and train a ML…