A Protocol-Language Model for Network Intrusion (Without Deep Packet Inspection) 事件

A Protocol-Language Model for Network Intrusion (Without Deep Packet Inspection) arXiv:2606.00155v1 Announce Type: cross Abstract: Modern network intrusion detection systems (NIDS) are caught in a structural contradiction: the protocols carrying the highest threat intelligence are precisely those encrypted under TLS 1.3 and QUIC, where payload inspection yields nothing. We ask a simpler question -- what if the attack signature is not in the bytes, but in the rhythm? -- and answer it by treating