| |
Analyze Encrypted Traffic to Protect Your Network |
|
| |
Encrypted Web Traffic Presents a Growing Risk |
|
| |
Today, encrypted traffic accounts for up to 30% of web traffic – traffic that is invisible to virtually every security product, including firewalls and intrusion prevention solutions. Encrypted traffic thus represents a growing security gap for organizations.
|
|
| |
While the fact that it is encrypted implies that it is more secure, encryption is no guarantee of a web site's security. Virtually and encrypted site can be malicious to begin with, or a hacked site implanted with malware. In addition, web sites could use revoked, stolen, forged or otherwise insecure certificates. |
|
| |
Why Do You Need To Scan Encrypted Traffic? |
|
| |
A revolution in the type and volume of content threats has taken place over the last two years. Organized crime groups realized they can make huge profits with low risk, drafting hackers and script-kiddies to their ranks. They also realized there is a huge security gap they can exploit – on the Web. |
|
| |
On the prowl for security gaps to exploit to their advantage, these crimeware writers have realized that encrypted sites are blind to almost all security solutions. The multitude of Web-based attacks must be blocked, even if the data is encrypted. |
|
| |
Comprehensive Content Security From eSafe |
|
| |
The eSafe Web SSL solution provides a complete solution for analyzing encrypted Web content. |
|
 |
Complements eSafe Gateway and eSafe Web to provide transparent inspection of all encrypted (HTTPS, SSL, TLS) web traffic |
|
|
Policy based certificate authorization at the gateway instead of relying on user discretion |
|
|
Automatic certificate revocation with CRL and OCSP support |
|
|
Fully supports eSafe's policy-based URL filtering for encrypted sites |
|
|
Easy one-click management of digital certificates |
|
|
Root and Client CA store with auto-add and categorize Root and Sub-CA |
|
|
On-the-fly exception handling based on URL and certificate fingerprint |
|
|
Special handling of client-side certifications |
|
|
Flexible black and white lists administration |
|
|
Extensive incident management and reporting capabilities |
|
| |
|
|
 |
|
|
| |
|
|