Finally, some interesting security pie. Palo Alto Networks Application Usage and Risk Report contains lots and lots of pies. One can follow the link and read the document. Two obvious items had caught my attention:
- HTTP has become the universal application protocol
- Obvious attempts at activity concealment continue
At this time (September 2008 , one could think that the different security solutions would solve the different HTTP tunneling and concealment attempts. After all, there are so many and diverse methods including URL filtering (to block the destination), application identification, proxy authentication (to prevent unmanned applications etc).
I’m curious if and when applications will start to use 53/udp to sneak through the security systems.