February 7, 2013

Inspecting Encrypted Web Traffic

  • Secure and enforce HTTPS traffic compliance
  • McAfee

As web usage escalates to be one of the highest risk attack vectors, many organizations are enhancing security protection at the proxy or web gateway. This is a positive step; however, one area of security that is frequently neglected during these infrastructure improvements is the inspection, validation, and enforcement of HTTPS (or SSL) traffic. In many organizations, HTTPS traffic represents between 10 and 30 percent of the total outbound web traffic. Without appropriate controls and inspection, this channel places security policy decisions at the hands of the end user and lies open to abuse from insider threats, data leakage, and malicious content.

Efficient and appropriate inspection of encrypted traffic will help your organization better protect itself and its data while enabling safe business transactions via web channels. As you enforce compliance of HTTP and HTTPS traffic, you can significantly reduce your risk and the attack surface available to web‑based attacks.



Search Webtorials

Get E-News and Notices via Email


  

 



  

I accept Webtorials' Terms and Conditions.

Trending Discussions

See more discussions...

Featured Sponsor Microsites






















Archives

Notices

Please note: By downloading this information, you acknowledge that the sponsor(s) of this information may contact you, providing that they give you the option of opting out of further communications from them concerning this information.  Also, by your downloading this information, you agree that the information is for your personal use only and that this information may not be retransmitted to others or reposted on another web site.  Continuing past this point indicates your acceptance of our terms of use as specified at Terms of Use.

Webtorial® is a registered servicemark of Distributed Networking Associates. The Webtorial logo is a servicemark of Distributed Networking Associates. Copyright 1999-2018, Distributed Networking Associates, Inc.