The challenges and benefits of SSL/TLS Orchestration

Security and privacy concerns globally have driven rapid growth in the use of encryption for data in transit across the internet. F5 Labs sampled more than 20 million web pages in 2017 and found that more than 80 percent of page loads are encrypted with SSL/TLS.

Unfortunately, malware developers have found that hiding their viruses, worms, ransomware, and other malicious software in encrypted traffic can allow it to go undetected by most security solutions. That means companies, in order to find this hidden malware, must decrypt their inbound and outbound SSL/TLS traffic so it can undergo inspection. Then they must re-encrypt it.

But most organizations lack a central control to implement decryption policies across the multiple inspection-performing devices that are part of the security chain. They must resort to cumbersome processes such as “daisy-chaining” devices or manual configuration to support inspection across the entire security chain. This leads to increased latency, complexity, and risk.

F5 SSL Orchestrator is specifically designed to provide high performance decryption of inbound and outbound SSL/TLS traffic — then “orchestrate” and route this traffic intelligently, so that comprehensive security inspection is performed to expose malicious threats and block attacks. The solution features dynamic service chaining and policy-based traffic steering to efficiently manage encrypted traffic flows across the security chain, without latency or bottlenecks, and to simplify the changing or removing of a security device.

As a result, you can maximize your security services investment for malware, data loss prevention, ransomware, and next-generation firewalls, thereby preventing inbound and outbound threats, including exploitation, callback, and data exfiltration.

For more information contact [email protected]