SSL encrypted traffic accounts for a large and growing percentage of all internet traffic. While the adoption of Secure Sockets Layer (SSL), and its successor, Transport Layer Security (TLS), should be cause for celebration – as SSL encryption improves confidentiality and message integrity – these protocols also put your organization at risk as they create encrypted blind spots that hackers can use to conceal their exploits from security devices that are unable to perform SSL inspection/TLS inspection.
The threat of SSL/TLS blind spots is a serious one. According to a Ponemon survey, legacy security infrastructure is not built to take care of these evolved, hidden attacks, and almost two out of three organizations are not able to perform SSL decryption / TLS decryption and thus cannot perform SSL inspection/TLS inspection of network traffic.
To stop cyberattacks, you need to gain insight into SSL encrypted data; to gain insight into encrypted data, you need a dedicated security platform that can handle traffic SSL decryption / TLS decryption and send it to the security stack for inspection in cleartext. This paper describes six features to consider when evaluating an SSL inspection/TLS inspection platform. With this information, you will be able to easily define evaluation criteria and avoid common deployment pitfalls.
Register to Download Free White Paper