 |
|
“PROTECTING SSL COMMUNICATIONS FROM CONCEALED NETWORK ATTACKS”
by Daniel Proch, Director of Product Management, Netronome Systems
View the SSL webcast. (Registration required.) |
|
|
|
|
The Netronome SSL Inspector is the industry’s highest-performance transparent proxy for Secure Sockets Layer (SSL) network communications, providing existing sniffing, recording and filtering security appliances with access to the plaintext of SSL-encrypted connections. This provides assurance that common network-based threats are identified within SSL flows that previously could not be examined by installed network and security appliances. Beyond industry-defining performance, the Netronome SSL Inspector is the first transparent SSL proxy that both increases network security and significantly minimizes deployment and operational costs by removing costly user and network configuration.
Available as a complete network appliance, the Netronome SSL Inspector can be used by enterprises or private-labeled for OEMs. As an appliance, the Netronome SSL Inspector would be deployed adjacent to existing security and networking appliances to provide these devices with visibility into SSL flows. The plaintext of SSL flows can be fed to existing applications via a dedicated gigabit Ethernet link while non-SSL flows are mirrored to the security appliance, firewalled or cut-through, bypassing the security appliance altogether. This enables SSL visibility to be added to existing network security infrastructure with no integration effort.
The Netronome SSL Inspector supports two modes of operation. The adjacent appliance may be sniffing/recording the traffic, in which case the plaintext traffic flow is consumed by the security appliance. The Netronome SSL Inspector also supports filtering appliances that actively control the passage of flows through the Netronome SSL Inspector.
THE NETRONOME SSL INSPECTOR APPLIANCE IS AVAILABLE IN THREE CONFIGURATIONS
| MODEL | SI-2000 | SI-4000 | SI-8000 | | Total Connections | 100,000 | 350,000 | 1,000,000 | | SSL Connections | 10,000 | 30,000 | 50,000 | | SSL Search Rate (per second) | 3,000 | 10,000 | 30,000 | | SSL Set-up Rate (per second) | 1,000 | 1,500 | 2,500 |
The Netronome SSL Inspector Appliance provides network and security appliance manufacturers with access to plaintext traffic immediately as a two-box solution, while they optionally begin the process of integrating the SDK version into future products.
|
|
|
|
