HTTPS/SSL Inspection

The Secure Socket Layer (SSL) protocol is a standard in use for encrypting communications between browsers and web servers. It is used on commercial as well as non-commercial websites. Banking, e-commerce, online memberships and webmail all use SSL-based communications.

Although encrypted SSL-communication helps to protect confidential data in transit, it also enables cybercriminals to hide their crimeware on the way to the end-user desktops. It also allows for the crimeware to communicate back to the cybercriminal. The widespread use of SSL makes it an attractive tool for cybercriminals to hide their activities.

Encrypted SSL-communication also prevents the detection of confidential data leakage. Intentional or unintentional outgoing communications to remote websites (such as Gmail, Facebook and others) may include organizations’ confidential data that needs to be protected and to remain inside the corporate network.

The benefits of encrypted SSL-communication contribute to hide (and therefore protect) sensitive data in transit. However, this also prevents existing security products to detect those data to make sure that no crimeware is entering and no confidential data is leaving the network.

Finjan Secure Web Gateway provides organizations with a unified web security solution. Utilizing Finjan's patented active real-time content inspection, Crimeware, malware and data leakage are proactively prevented, even when hiding in SSL-traffic. All inbound and outbound SSL data is analyzed at the gateway. By decrypting the encrypted (SSL) content, malicious content and confidential data are detected and blocked.

Inspected content remains encrypted when entering and exiting the appliance, ensuring that unencrypted traffic doesn’t leave the appliance to avoid eavesdropping. Furthermore, SSL-inspection can be excluded in the SSL-policy for those cases that data must remain encrypted. This way, employee privacy as well online banking, online patient data and other sensitive data can be protected, which is especially important for organizations that need to comply with regulations such as SOX, PCI and HIPAA.

Benefits

• Part of Finjan Secure Web Gateway that provides enterprises with a unified web security solution combining security with productivity, liability and bandwidth control
• HTTPS/SSL content inspection detects and blocks Crimeware and malware as well as leakage of confidential data
• Integrated SSL-policy enables better control for those cases that data must remain encrypted
• Inspected content remains encrypted when entering and exiting the appliance
• Enforces an organization’s SSL-certificate validation policy at the gateway, and does not leave it to the discretion of each individual user
• Uses deep code analysis to reveal malicious combinations of individually innocent functions
• Powerful logging and reporting provides a flexible and scalable data analysis platform for internal use, audits, and compliance requirements
• Easy deployment and automatic updates reduce total cost of ownership (TCO)
• Assistance in complying with regulations such as SOX (COBIT) DS5, HIPAA, GLB Act, PCI DSS 1.1., and FISMA.

Read about our secure web gateway.