Security News > 2020 > August > Report: Two new encryption standards will soon sweep away security controls
Transport layer security and DNS, two of the foundational protocols of the internet, have recently undergone radical changes to protect browser user privacy.
At the same time, they will reduce security on-premises in the short term, and security professionals must put tools in place in the next couple of years, a new report from Forrester Research states.
One of the most vocal opponents, Holmes wrote, is Paul Vixie, the godfather of DNS. The report stresses that security professionals should be aware of the coming changes.
"Many security tools such as enterprise firewalls, secure web gateways, and cloud access security brokers block users from going to known-bad websites by examining three key pieces of metadata in the encrypted traffic," Holmes wrote.
Three metadata will be disappearing from network traffic soon: the user's DNS request, the target's SSL certificate, and the Server Name Indication SNI. "Most Forrester security and risk clients are monitoring their users to protect them, not exploit them, and these changes make their lives more difficult," the report said.