Skip to content
Aether Platform

NCS Deep Defense System

NCS (Network Connectivity Service) goes beyond transporting packets; it inspects and sanitizes content using “Deep Defense” capabilities.

1. DNS Filtering & Threat Intelligence

We inspect DNS queries for every outbound connection from a workspace.

  • C2 Server Blocking: Access to Command & Control (C2) servers is blocked at the DNS resolution level, severing malware communication channels.
  • Category Filtering: Policy-based blocking of non-business sites (Gambling, Adult, Streaming services).
  • Auto-Update Threat Intel: Blacklists are continuously updated based on the latest threat feeds from the Aether Security Center.

2. SSL Bump (Traffic Inspection)

Threats can hide inside encrypted HTTPS traffic. NCS uses SSL Bump (Man-in-the-Middle) technology to transparently inspect content.

Mechanism

  1. Intercept: NCS intercepts the workspace’s outbound HTTPS connection.
  2. Dynamic Certs: It presents a forged certificate signed by the Aether CA (trusted by the workspace root store).
  3. Inspect: Decrypted traffic undergoes Virus Scanning and DLP (Data Loss Prevention) checks.
  4. Re-encrypt: If safe, traffic is re-encrypted and sent to the destination server.

3. Intelligent Caching

A side benefit of SSL Bump is content caching.

  • Blazing Fast Installs: We analyze traffic for pip install or npm install. Often-downloaded packages are served immediately from an organization-wide internal cache, saving bandwidth and dramatically reducing build times.