The use of encrypted traffic is growing, largely due to enterprise-wide usage of SSL-based applications. While this type
of encrypted traffic protects end-user data, it also creates security ‘blind spots’ in your network. This Converge article explains SSL usage and the challenges network security teams face when managing these security challenges that SSL creates.
“Although this encrypted traffic protects end-user data, it also creates security ‘blind spots.’ The security infrastructure put in place to protect the enterprise is blind to threats within SSL traffic, thus causing risks to the computing infrastructure. Traffic to enterprise SSL servers might be hiding malicious attacks that bypass existing security measures. SSL provides a convenient vehicle for criminals to hide their cyber attack activities, as in the case of several recent well-publicized attacks.
“In addition to the risks of incoming threats hiding within SSL, outbound enterprise SSL traffic is now a growing problem. This is becoming quite a ‘hot button’ for security applications that tackle data loss prevention (DLP), compliance reporting, etc. — solutions that could, at one time, see what outgoing traffic contained, are suddenly ‘in the dark’ as applications switch to using SSL.”