Encrypted Traffic Visibility
Encryption technology has enabled much greater privacy and security for subscribers. But it makes threat detection and quality of experience much harder. TSG offers two options for encrypted traffic visibility, which enables threat detection and application identification.
Encrypted traffic visibility provides:
- Decryption: TSG has a full-proxy architecture, which gives you more control and more flexibility over different domain names and/or IP addresses. And it can monitor and skip certificate pinning Apps
- Machine Learning (no decryption): Detects application and anomalous behavior without decrypting source data by combining network TCP/IP and SSL metadata with machine learning and behavioral analytics
Encrypted traffic visibility enables you to:
- SSL/TLS decryption prevents botnets from accessing Command and Control domains as well as prevents users from visiting phishing sites. Decrypted plaintext traffic could be mirrored to a third party for archiving and further analysis
- Machine Learning-based application identification helps administrators to gain control without interference subscribers