Microsoft tries a deeper dive into Azure Firewall traffic Microsoft is updating Azure Firewall to give admins a better idea what is happening when traffic in the cloud slows or shows atypical behavior. The latest features – Latency Probe metric, Flow Trace logs, and Top Flows logs – have been released in preview and are aimed at improving the Azure firewall-as-a-service's ability to …
Based on an earlier post today, it was revealed that Microsoft's practices also involve trying to open up encrypted zip files.
Perhaps this is only done when the nasty zip reaches the Azure folder and not done in semi-real time via the firewall, but the temptation to peek inside packets while in transmission must be strong.
Can you evidence this. Feels a bit tin-hat brigade/anti-Azure-ry.
Microsoft will be in for *massive* disappointment on any hit rate finding anything actually useful, if they are even able to decrypt the encrypted files - which to me is why they are encrypted in the first place.
Over and above GDPR/CCPA concerns. (Other Data Protection Legislation is available).
I know it's more fun to bash Microsoft than to actually read the article, but they get the CRC values from the zip file (which are stored unencrypted) and compare them to known bad values. Not immensely useful with today's virus tactics, but every little helps
The Register 
Biting the hand that feeds IT
Copyright. All rights reserved © 1998–2024
