Yesterday, Cisco rolled out Encrypted Traffic Analytics (ETA), a breakthrough technology that identifies malware in encrypted traffic without the need of intercepting and decrypting data streams.
The solution, one of a kind, has been in field trials with selected customers since June last year.
Now Cisco says it will expand ETA support from campus traffic switching products to the company's enterprise routing platforms, such as office router line (the ISR and ASR) and virtual cloud services routers (CSR).
Cisco says the new ETA technology works by employing a multi-layer machine-learning-based system to read encrypted data and spot the tiny differences between benign and malware traffic. The company explains:
Cisco says ETA's main advantage is that it preserves privacy without compromising local security or breaking the numerous compliance protocols many enterprises must adhere to.
Because of the way the new ETA technology works, Cisco says only customers with the latest hardware will be able to take advantage.
"ETA, which was initially available only on our new family of campus switches, the Catalyst 9300 and 9400 series, has now been extended to routing platforms spanning the branch, WAN and cloud," says Scott Harrell, Senior Vice President and General Manager of Cisco's Enterprise Networking Business.
Product lines such as the ones below will be able to receive ETA support in the form of an additional component for Cisco's IOS XE operating system:
A report released by Phish Labs last month reveals that one in four phishing sites currently loads via HTTPS. A Gartner report predicted that by 2019 80% of all Internet traffic will be encrypted and around 50% of new malware campaigns will also switch to using encryption and various obfuscation techniques.
Below is Cisco's overly-dramatic video introducing its new ETA tech: