- Is the Cisco MARS mission going to abort?
- First iPhone worm spreads Rick Astley wallpaper
- 10 stunning 3D buildings made with Google SketchUp
- Open source software ready for big business
- Four reasons to buy (and one reason to avoid) the Droid
My company is increasingly deploying SSL applications and that traffic already represents 40 percent of my network capacity. With this encrypted traffic on the rise, how can I build an effective protection against the loss of sensitive data?
My company is increasingly deploying SSL applications and that traffic already represents 40 percent of my network capacity. With this encrypted traffic on the rise, how can I build an effective protection against the loss of sensitive data?
Many enterprises are currently facing a similar problem as SSL-encrypted applications become more prevalent. In 2007, Enterprise Strategy Group estimated that SSL-encrypted application deployments had increased by 50 to 55 percent.
In response to this new application profile, organizations need a layered data leak protection (DLP) strategy that can monitor not just email and IM traffic but also the encrypted traffic that is increasingly finding its way onto the corporate network. With an integrated data leak prevention and secure web gateway solution, enterprises can both monitor network activity and data usage and prevent users from transmitting or copying data in violation of company policies.
So, what does each solution bring to the table? A secure Web gateway can include Web request and content filtering, prevention of malware and other malicious mobile code, content and certificates validation, encrypted SSL traffic inspection and control over IM, P2P and streaming traffic. Data leak protection solutions monitor networks and user endpoints to identify and protect confidential data from distribution.
Essentially, the secure Web gateway terminates and decrypts SSL connections, passing the decrypted content to the DLP solution for monitoring. By making encrypted traffic visible to DLP solutions, a secure Web gateway broadens the coverage of DLP security to all encrypted and unencrypted traffic, ensuring that valuable data assets never leave the WAN surreptitiously. Without the visibility into SSL-encrypted traffic, the enterprise leaves a back door unmonitored and exposes itself to potential losses from data leaks.
A secure Web gateway not only provides visibility into an increasingly larger portion of traffic on the corporate network, but it also enables enterprises to apply security and control measures to SSL-encrypted traffic. This is particularly important in industries such as health care and financial services that have stringent data protection regulations with which they must comply and also heavily rely on SSL-encrypted applications.
Rss FeedRss Feed
The Leader in Network Knowledge
Comments (3)
Detection Capability is Key to a successful DLP deploymentBy Anonymous on September 9, 2008, 1:08 amIf the DLP solutions' detection is not a ZERO false positive and Zero false negative then you'll be watching the data leave instead of stopping it.
Reply | Read entire comment
Man in the middleBy Anonymous on September 13, 2008, 1:28 pmIsn't this creating a man in the middle security hole? In the long run 'solutions' like this will result in more proprietary data loss, not less.
Reply | Read entire comment
GTB Technologies is the only vendor that solves the DLP market lBy Anonymous on October 8, 2008, 12:54 pmGTB Technologies is the only vendor that solves the DLP market limitation of False Positive and False Negative rates. This limitiation, if not solved, creates a...
Reply | Read entire comment
View all comments