SSL proxy

SSL proxy

SSL proxy

SSL proxy is used to provide Network Traffic Security System with the ability to monitor not only open but also SSL encrypted traffic. It is necessary as today most of the traffic is SSL encrypted and thus protected from monitoring by NTSS directly. To achieve it, SSL proxy serves as a man-in-the-middle. It essentially is HTTPS proxy virtually invisible to users.

As shown in the illustration below, encrypted traffic instead of being sent directly to the user is sent through SSL proxy. Thus user’s browser sees the data encrypted by SSL proxy who also dynamically generates a certificate for the server user is communicating with and signs it with its own root certificate. So SSL proxy receives traffic encrypted by the server, but user’s browser receives traffic encrypted by SSL proxy. NTSS receives unencrypted traffic from SSL proxy.

As open traffic only ever exists inside Ugunssiena IT solution and is safely stored in NTSS, it is perfectly safe from any perspective, both possible internal attacks as well as external ones. There is simply no way for anyone to access encrypted traffic as “outside the box” it is always encrypted.