The most comprehensive decryption solution, Thunder® SSLi® (SSL Insight) decrypts traffic, enabling security devices to analyze all enterprise traffic without compromising performance.
Decrypt traffic across all standard TCP ports and advanced protocols like SSH, STARTTLS, XMPP, SMTP and POP3.
FULL-PROXY ARCHITECTURE
As a full proxy, ciphers can be re-negotiated to ciphers of similar strength to prepare for future ciphers or TLS versions.
ICAP-COMPATIBLE
Acting as an ICAP client, Thunder SSLi passes traffic to a network’s existing DLP systems without the need for extra solutions.
FIPS 140-2 LEVEL 3 COMPLIANCE
The only SSL decryption solution that supports up to four internal HSMs, and multiple external HSMs, to secure private keys.
URL BYPASSING
Selectively bypass traffic decryption to enforce privacy policies using a list of over 460 million domains.
URL Filtering
Categorizes over 460 million domains to maximize employee productivity and security by blocking malicious websites as well as to selectively bypass decryption for compliance.
LOAD BALANCING AND STEERING
Increase security capacity by load-balancing multiple security devices and selective traffic steering based on fine-grained policies.
MANAGEMENT
Simplified On-Box management and configuration with AppCentric Templates(ACTs). Harmony Controller extends centralized management and analytics through SSLi App for distributed deployment.
Thunder SSLi can decrypt traffic for a variety of security products simultaneously, including inline, non-inline (passive/TAP) and ICAP-enabled devices.
Thunder SSLi can decrypt traffic for a variety of security products simultaneously, including inline, non-inline (passive/TAP) and ICAP-enabled devices.
Customers are demanding a purpose-built standalone solution to address the SSL blind spot without degrading the performance of the security infrastructure.