[knowledge][ETA] Encrypted Traffic Analytics
思科ETA主页
https://www.cisco.com/c/en/us/solutions/enterprise-networks/enterprise-network-security/eta.html
ETA有关开源项目:
https://github.com/cisco/joy/tree/master/src
ETA数据分析思路:
Understanding Network Traffic Through Intraflow Data
https://resources.sei.cmu.edu/asset_files/Presentation/2016_017_001_450411.pdf
白皮书:
https://www.cisco.com/c/dam/en/us/solutions/collateral/enterprise-networks/enterprise-network-security/nb-09-encrytd-traf-anlytcs-wp-cte-en.pdf
other:
https://apjc.thecisconetwork.com/site/content/lang/en/id/7905
思科ETA提取的元数据:
相关知识, 什么是信息熵?
https://www.zhihu.com/question/22178202
放在现在这个信息时代,其实信息熵的概念一句话就能概括:
一个东西的信息熵(信息量),就是把这个东西存在你硬盘上所需要的最小空间。”