Encrypted traffic SSL - Why network visibility matters for enterprises?

SSL-encrypted traffic is a fast-growing portion of all enterprise traffic. According to several research studies, approximately 25 to 35 percent of enterprise traffic is encrypted in SSL and the number is growing. In many networks, half of all internet-bound traffic is already encrypted (mostly HTTPS) and it is likely more than three-quarters of network traffic will be encrypted within the next couple of years. With an increasing number of advanced threats hiding in SSL traffic, it is more important than ever to monitor and manage encrypted traffic in an enterprise. Decrypting/inspecting SSL traffic has created a number of challenges for security and networking teams in enterprises. 

Challenges due to encrypted SSL traffic

Decrypting/inspecting SSL traffic has created a number of challenges for security and networking teams in enterprises. SSL-based malware entering a network can easily go undetected and exploit a host or series of hosts. And since the traffic is invisible, it is not possible for an enterprise to know how much traffic is encrypted on the network on a certain today. As a result, it is not easy to know if the monitoring tools are tackling the entire traffic. SSL decryption is required for data loss prevention and application performance monitoring.

Cubro Solution

Cubro Sessionmaster EXA series is the next development stage of Cubro’s product line of network packet brokers which offers the application of delivering SSL/TLS decryption to various inline and out-of-band monitoring and security tools. The Sessionmaster helps maximize the overall efficiency, security and performance of the network infrastructure. Due to the sensitivity of the data, the SSL decryption capabilities in Sessionmaster provides the ability to selectively decrypt traffic based on policies using a variety of parameters including IP address, ports, VLAN tags, domain names and URL categories.