SSL a Security Blind Spot Say Smoothwall.New Version of Guardian Incorporates SSL (Secure Sockets Layer) The leading security protocol on the Internet. Developed by Netscape, SSL is widely used to do two things: to validate the identity of a Web site and to create an encrypted connection for sending credit card and other personal data. Interception CHARLOTTE, N.C. -- Internet security ''This article or section is being rewritten at Internet security is the process of protecting data and privacy of devices connected to internet from information robbery, hacking, malware infection and unwanted software. specialists SmoothWall have raised the bar on SSL security this month with a new version of their Guardian web filter. Their key feature for 2009 is SSL Interception, which allows organizations to control and monitor encrypted en·crypt tr.v. en·crypt·ed, en·crypt·ing, en·crypts 1. To put into code or cipher. 2. Computer Science traffic. According to according to prep. 1. As stated or indicated by; on the authority of: according to historians. 2. In keeping with: according to instructions. 3. Netcraft1, in the last year the number of websites using SSL encryption The reversible transformation of data from the original (the plaintext) to a difficult-to-interpret format (the ciphertext) as a mechanism for protecting its confidentiality, integrity and sometimes its authenticity. Encryption uses an encryption algorithm and one or more encryption keys. has risen by nearly 40% and now totals well over two million. In addition to the obvious applications (i.e. online retail, banking and gambling) SSL encryption is now being increasingly used for online web logins (Hotmail and gmail) charity donations and other payment gateway services. Some anonymizers also rely on SSL to keep surfing sessions secret. The problem with SSL is that despite the certificate system, not all sites that use the protocol can be automatically trusted. Organizations can end up in a tricky position if critical data is compromised via webmail accounts - or if an employee does or says something they shouldn't using an encrypted proxy network or a secure IM client like GoogleTalk. More risks lie in the fact that standard security solutions rarely work on encrypted traffic - so viruses can use SSL to worm their way into networks undetected. By travelling into networks via the same secure tunnels that are used for online banking, malware (MALicious softWARE) Software designed to destroy, aggravate and otherwise make life unhappy. See crimeware, virus, worm, logic bomb, macro virus and Trojan. and other web nasties are rendered virtually invisible and can effectively sidestep side·step v. side·stepped, side·step·ping, side·steps v.intr. 1. To step aside: sidestepped to make way for the runner. 2. security by disguising themselves as 'trusted' traffic. Tom Newton, Product Manager at SmoothWall says "Because SSL has traditionally been beyond the reach of network security systems like content filters; it has become a serious security blind spot. A much higher proportion of network traffic is now encrypted, and so SSL filtering is now an indisputably crucial component of network control." SSL Interception allows SSL traffic to be decrypted so it can be analyzed an·a·lyze tr.v. an·a·lyzed, an·a·lyz·ing, an·a·lyz·es 1. To examine methodically by separating into parts and studying their interrelations. 2. Chemistry To make a chemical analysis of. 3. and the content checked for viruses and other undesirable material. One of the reasons it is rarely found in standard security systems is because of the processor-intensive calculations and algorithms required. Fortunately though, vendors like SmoothWall are now finding ways to incorporate SSL control - without impacting performance. SSL Interception is also an important weapon for the IT department in the ongoing fight against proxy abuse in the workplace. As more organizations embrace the productivity benefits of filtering, an equal number of their employees are learning how to use proxy tools to bypass filters so they can access their cherished Facebook accounts. Many of these bypass tools rely on SSL encryption for secret browsing and SSL Interception is the only way to accurately detect and block these technologies. As Stewart Allen, an independent analyst and consultant explains, "Being able to see the Internet traffic Internet traffic is the flow of data around the Internet. It includes web traffic, which is the amount of that data that is related to the World Wide Web, along with the traffic from other major uses of the Internet, such as electronic mail and peer-to-peer networks. flows in an unencrypted format strengthens anti-malware defences. SmoothWall's new SSL Intercept intercept in mathematical terms the points at which a curve cuts the two axes of a graph. feature helps IT departments protect their networks from the underbelly of the Internet." The latest version of Guardian also benefits from customizable search term blocking and a dramatically improved range of reports including site-specific reporting. Existing users will get the new functionality via a feature pack download. For more information visit www.smoothwall.com. About SmoothWall The SmoothWall family of Internet security solutions helps enterprises and schools to prevent misuse, block objectionable content and protect against web related threats. Delivered and supported via a global network of partners in over 60 countries, SmoothWall's commercial and open source solutions safeguard more than a million networks worldwide. 1 Netcraft SSL Survey January 2008 [http://news.netcraft.com/SSL-Survey/] |
|
||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion