Netronome SSL Inspection Security
Security & Compliance Without Compromise
Netronome's SSL Inspector provides IPS, IDS and other security devices with visibility into the contents of SSL-encrypted traffic at the highest speeds, for the largest number of flows and at the highest connections rate.
In order to maintain IT security best practices, enterprises and agencies have been deploying more and more security devices (IPS, IDS, NAC, etc.) in their networks. However, due to the increase in the use of SSL encryption, these deveices are becoming less and less effective, since they are "blind" to the payloads of SSL-based communications. Thus, IT organization are finding it increasingly difficult to enforce acceptable-use practices and meet policy compliance.
Without compromising any aspect of enterprise or government security mandates, the Netronome SSL Inspector™ SSL Proxy Appliance opens up these "blind spots" and allows network security appliances, and the organizations that deploy them, to preserve the benefits of SSL while still maintaining multi-gigabit, line-rate network performance.
The Netronome SSL Inspector decrypts SSL-based flows and passes them on to existing IPS, IDS, NAC and other security devices, enabling the identification and elimination of risks--such as compliance violations, viruses/malware and intrusion attempts--that are normally hidden with SSL. The privacy and integrity of SSL-encrypted communictions are maintained by making the plaintext available only within a controlled environment, while also exempting certain traffic from inspection.
Designed for Enterprises and Agencies to Fully Complement IPS/IDS/NAC and Other Security Devices
This is no ordinary SSL proxy. The Netronome SSL Inspector Appliance is deployed adjacent to existing network security appliances, feeding the plaintext of SSL flows to them, via a dedicated gigabit Ethernet link, and expanding the scope of their applications to extend their benefits to SSL-encrypted traffic. Netronome's network processing and cryptographic accelerator hardware are leveraged to forward non-SSL traffic at multi-gigabit rates, enabling security appliances to avoid becoming the source of reduced network throughput. And, unlike existing SSL proxies, the Netronome SSL Inspector is transparently inserted into the network, significantly reducing the deployment costs associated with complicated network topology and end-user configuration changes. Bridge the gap between policy, network security and technology. With the Netronome SSL Inspector, your IT security best practices will truly be your best efforts.
