Although decrypting SSL/TLS HTTPS traffic is necessary, doing so may need to be selectively controlled. For example, it might be desirable to avoid breaking HTTPS on highly trusted financial sites while decrypting traffic to destinations that host generic files such as Box or Dropbox. The iboss Zero Trust Secure Service Edge provides a broad array of selective decryption options that allow certain traffic to be decrypted while leaving other traffic untouched.
These granular and selective controls on HTTPS decryption and bypass are critical to ensure administrators have the needed tools to adequately apply web filtering, compliance, malware defense, botnet detection and data loss protection to users.
Inspect and Secure HTTPS Encrypted Traffic Easily in the Cloud
With this amount of encrypted HTTPS traffic, network security appliances can’t handle the load of performing HTTPS decrypt to enable compliance, malware defense, and data loss applied to cloud connections. Adding to this problem, without decryption, reporting visibility vanishes as the content of the connections is not visible for reporting purposes.
The iboss Zero Trust Secure Service Edge delivers network security as a service, directly in the cloud. This allows organizations to decrypt any volume of HTTPS traffic for network security without worrying about increased costs or slower cloud connections due to HTTPS decryption. The iboss Zero Trust Secure Service Edge delivers through containerization, which allows infinite horizontal scaling: adding more “checkout lanes” as bandwidth and encrypted traffic increase to ensure fast connections from anywhere in the world.