SSL Decryption Visibility and Management

SSL Decryption Visibility and Management

Remove your encrypted traffic blindfold. The use of Secure Sockets Layer (SSL) / Transport Layer Security (TLS) communications in today’s enterprises is prolific, and apps that take advantage of it – such as SharePoint, Exchange, and Google Apps – are commonplace and rapidly growing. Although the increasing pervasiveness of Cloud and mobile-based services offers you significant benefits, the encrypted traffic that protects data from being viewed within these modern applications also creates a blind spot that can be exploited by advanced threats and malware. While more than 25% of outbound web traffic is now encrypted, 80% of security systems do not recognize or prevent threats within SSL traffic.

To identify hidden threats to the business, it’s clear you need complete visibility into the encrypted traffic coming into and out of the business. However, to comply with local privacy regulations that protect certain classes of data — such as financial or healthcare-related — as well as with corporate policies on the acceptable use of applications, organizations must be able to selectively decrypt network traffic. An encrypted traffic management strategy that considers the various business needs, the corporate policies established, and the compliance mandates for your industry is essential.


Fortify Your Network: 5 Sample Use Cases


Blue Coat can help you in your quest for an appropriate encrypted traffic management strategy and supporting architecture. We provide comprehensive, policy-based visibility into SSL/TLS encrypted traffic through the following innovative solutions:

  • SSL Visibility Appliance: The centerpiece of Encrypted Traffic Management, this gives you 20/20 vision into all your SSL traffic and lets you add SSL decryption and inspection capabilities to your advanced threat protection solutions as well as your existing network security architecture. So you can close the visibility loophole created by encrypted traffic.
  • SSL Intercept and Encrypted Tap for the ProxySG Appliance: Further enhancing the market-leading ProxySG secure web gateway, these solutions provide selective SSL decryption, inspection and orchestration of HTTPS/ web traffic based on established policies. SSL decrypted traffic can then be shared with Blue Coat and third-party anti-virus or Data Loss Prevention (DLP) solutions via the Internet Content Adaptation Protocol (ICAP) standard. The Encrypted TAP option also allows for the hand-off of SSL decrypted traffic to third-party monitoring and logging systems for analysis, archiving and network forensics.
Share this: