Unlike proxying all web traffic, Cisco Umbrella DNS-Layer protection use “selective” proxy mechanism to intercepts the web traffic, in Cisco terms this feature is called “Intelligent” proxy.

Umbrella classify all domains into three category — Good, Bad and Grey.

The classification is based on domain’s reputation. Each domain is assigned with a score based on in-depth research and the information received. The research data mainly come from Cisco Umbrella research team, Talos and more than 50 partners including researchers, academics institutions etc[1].

For example purpose, I am using Cisco Talos Reputation Center web tools to verify the reputation of three domains https://talosintelligence.com/reputation

Umbrella Intelligent proxy will allow Cisco.com domain and block yr9n47004g[dot]com domain.

putlockers.cr domain is neither Trusted nor Untrusted. Based on Talos domain reputation site, the domain putlockers.cr may host “Illegal Downloads” is the reason the domain is not fully trusted.

Grey domains reputation are similar (not exactly) to our above example and subjected to proxy all the web traffic. That means the end point will not make direction web connection to a grey domain. Grey domains are accessed via Umbrella proxy, this helps Umbrella to gain visibility into web traffic to scan embedded malicious-files and enforce content filtering (based on policy).

There are two ways we can enable Intelligent proxy, either with SSL Decryption enabled or without SSL Decryption enabled.

There are three main scenarios with Intelligent proxy feature.

1. Intelligent proxy is disabled, no web traffic will be send through Umbrella proxy. Umbrella DNS resolve the domain name and return the IP address of good & grey domain to the end device. End devices can establish web connection directly to the good and the grey domains.
2. Intelligent proxy is enabled, without SSL decryption then all web traffic to grey domain will be forwarded to Umbrella proxy. Port 80 (HTTP) web traffic will get security enforcement as per policy. But Umbrella won’t get any visibility into web traffic of port 443 (HTTPS). Hence not able to perform malware & anti-virus scanning or content filtering.
3. Intelligent proxy is enabled, with SSL decryption then all web traffic to grey domain will forward to Umbrella proxy. Both port 80 & 443 web traffic will get security enforcement as per policy.

Note: File Inspection should be enabled along with Intelligent proxy with SSL decryption to scan files for malicious content hosted on grey domains before those files are downloaded.

The Cisco Umbrella root certificate is needed when Intelligent proxy with SSL decryption is enabled, to access the intended grey website. Otherwise the browser will show certificate error. Yes, we may able continue to access the website by clicking “I accept the risk” option in the browser. but this is not a best practice and not recommended.

[1] https://support.umbrella.com/hc/en-us/articles/230903908-Finding-out-More-About-Websites-that-Umbrella-has-Blocked-for-Security-

Industrial Revolution 4.0 (IR4.0) is catching up rapidly than previous three revolutions. The speed and agility are not only forcing us to change the way we live and work, it is a disruption for many industries traditional approach and business models.

The first Industrial revolution began with the invention of steam engines in circa 1780, the second revolution took place roughly after a century by the invention of electricity and the third revolution with the birth of Internet, electronics and digital computing.

In less than half-century, the fourth industrial revolution is already here with emerging technologies like Artificial Intelligence, quantum computing, biotechnology, Internet of Things (IoT) etc.

Technology has become the integral part of our daily life. Day-to-day activities are much dependent on many electronic devices and gadgets around us. In IR4.0 the technology is blurring the boundaries between electronic devices and humans.

Technology is merging more and more into the biological world. Currently there are various small wearable devices and apps available to monitor your heart rate, steps walked, sleep pattern etc to even more advanced electronics like brain controlled gadgets.

Brain controlled gadgets mostly use BCI (Brain Computer Interface) with electroencephalography (EEG) to make real time interaction by just using the brain directly. Commercial brain controlled products are available in market today for personal research purpose and wellness including stress level management, to improve concentration etc[1] [2].

Other than brain controlled gadgets, prosthetic industry is integrating BCI to revolutionise new and advanced way to add senses [3]. The integration is not limiting to legs, foot or arms but extending it into visual prostheses (artificial vision) as well.

Visual neural prostheses is an approach, provides hope to millions of blind people to generate visual perception in their brain using direct stimulation in their visual pathway. Though it is no way near to the level of vision provided by a human eye, but it may help to read large prints for a totally blind human[4] [5].

In our lifetime one creates lots of visual memories. Memory is created by binding neurons together. When electrical impulses traverse through the bonded neuron again, we can retrieve the visual experience from past [6].

The question is whether we are advanced enough today to fetch the information from brain’s visual memory region ? Can we sense the electrical impulses of neurons in the visual memory region to artificially create an image? May be not today, but IR4.0 seems very promising.

Imagine the possibilities if we can capture the visuals from a human brain. How much knowledge we can capture digitally from smart brains around the world. We can take prints of our imagination or of our cherished childhood events. isn’t that cool.

[1]“NextMind,” [Online]. Available: https://www.next-mind.com/

[2]“EMOTIV,” [Online]. Available: https://www.emotiv.com/workplace-wellness-safety-and-productivity-mn8/

[3] T. Abate, “An artificial nerve system developed at Stanford gives prosthetic devices and robots a sense of touch,” 31 May 2018. [Online]. Available: https://news.stanford.edu/2018/05/31/artificial-nerve-system-gives-prosthetic-devices-robots-sense-touch/

[4] N. P. Soroush Niketeghad, “Brain Machine Interfaces for Vision Restoration: The Current State of Cortical Visual Prosthetics,” 07 Sep 2018. [Online]. Available: https://www.ncbi.nlm.nih.gov/pmc/articles/PMC6361050/

[5] NIDEK CO. LTD, “Keys to Visual Prostheses,” [Online]. Available: https://www.nidek-intl.com/aboutus/artificial_sight/about_artificial_sight/point.html

[6] The Conversation, “An electronic chip that makes ‘memories’ is a step towards creating bionic brains,” 16 Jul 2019. [Online]. Available: https://theconversation.com/an-electronic-chip-that-makes-memories-is-a-step-towards-creating-bionic-brains-119741