Why only inspect 30% of your data traffic?

SonicWALL’s DPI-SSL service provides critical security, application control and data leakage prevention for analyzing HTTPS and other SSL encrypted traffic.

Today, more enterprise traffic is secured using the Secure Sockets Layer (SSL) protocol — up to 35 percent, according to industry analysts, and even more in some vertical industries. Cybercriminals know this, which is why they have begun to use SSL to hide their attacks. Not only are they bypassing firewalls and capitalizing on blind spots to sneak in malware that opens doors directly into corporate networks, they are also using SSL to hide command and control traffic so they can manipulate compromised systems from virtually anywhere.

Organizations can safeguard their networks from these tactics with Dell SonicWALL SSL Inspection, an add-on service to Dell SonicWALL Network Security Appliance (NSA) and SuperMassive Series nextgeneration firewall appliances as well as most TZ units. SSL Inspection provides advanced protection against SSL threats. Dell’s patented Reassembly-Free Deep Packet Inspection® engine, a full-stack stream inspection technology scans SSL-encrypted traffic — including HTTPS, SMTPS, NNTPS, LDAPS, FTPS, TelnetS, IMAPS, IRCS, and POPS — and regardless of the port being used. The service decrypts SSL traffic, inspects it for threats and then re-encrypts it, sending it along to its destination if no threats or vulnerabilities are found. It is an invaluable service for providing critical security and application control, and for preventing data leakage.

Benefits

  • Gain peace of mind with advanced SSL threat protection
  • Simplify SSL security with easy setup and automated scanning and threat identification
  • Customize your security needs with inclusion and exclusion lists
  • Avoid costly attacks and security incidents with a service designed to help
  • Contribute to your GDPR compliance

– Features –

  • Gain peace of mind with advanced SSL threat protection
  • Simplify SSL security with easy setup and automated scanning and threat identification
  • Customize your security needs with inclusion and exclusion lists
  • Avoid costly attacks and security incidents with a service designed to help

SSL Inspection – Client Deployment Mode

  • Client initiates SSL handshake with server
  • SonicWALL intercepts request and establishes session using its own certificates in place of server
  • Initiates SSL handshake with server on behalf of client using admin defined SSL certificate
  • Server completes handshake and builds a secure tunnel between itself and NGFW
  • NGFW decrypts and inspect all traffic coming from or going to client for threats and policy violations
  • NGFW re-encrypts traffic and sends along to client

Encrypted

does not always mean safe.

Get more info on DPI-SSL today