• On CBS.com: Sexy women of CBS
advertisementGet three services for $100/mo

November 8, 2005 4:04 PM PST

Blue Coat to cleanse encrypted traffic

By Joris Evers
Staff Writer, CNET News

  • Print
Related Stories

U.S. mulls new digital-signature standard

 November 1, 2005

Microsoft outlines IE 7 security plans

 October 27, 2005

Bug exposes Cisco switches to attacks

 October 19, 2005

Phishing hole discovered in IE

 December 17, 2004
Encrypting Web traffic can protect privacy and secure transactions, but it can also provide a cover for viruses, spyware and other pests trying to get into a corporate network, according to Blue Coat Systems.

Secure Sockets Layer, or SSL, has many legitimate uses, but also provides an "encrypted tunnel" that lets malicious code and phishing sites bypass most network security methods, Blue Coat said. The company announced Tuesday that it is updating its proxy product, ProxySG, to eliminate that "blind spot" in network security.

To improve corporate security, the new feature will enable organizations to decrypt SSL traffic so they can scan traffic for malicious code and other threats, the Sunnyvale, Calif.-based company said. It would also enable companies to provide better internal policy enforcement by, for example, governing which encrypted applications their employees are allowed to use.

SSL is widely used on the Internet to secure connections between a user's browser and services such as online banking, travel booking and other Web-based applications. When SSL is in use, the user typically sees a "padlock" icon in the bottom-right corner of the browser.

Essentially, Blue Coat's decryption feature would enable the overseer of corporate networks to view all aspects of employee traffic, such as the contents of a purchase made over a so-called secure connection.

Blue Coat isn't the first to decrypt SSL traffic for network security. Other vendors provide similar Big Brother-esque functionality. Finjan Software, for example, also sells an appliance that is capable of scanning the encrypted SSL content.

Blue Coat's new SSL proxy functionality is due in January as an option for its ProxySG product. Pricing ranges from $450 to $11,995, the company said.

See more CNET content tagged:
Blue Coat Systems Inc., SSL, network security, traffic, malicious code

Add a Comment (Log in or register) 2 comments
What a horrible idea
by Kindred_ November 9, 2005 5:02 AM PST
Do people stop to think about what things like this do to public trust of the internet? if anyone can buy this software to decrypt the SSL encryption, then the encryption is useless. It's hard enough to implement security measures when you are facing off against the 'bad guys'; it's even harder when you have to face the 'good guys' as well.
Reply to this comment
No worries...
by Steven N November 9, 2005 6:15 AM PST
This is for use in a corporate environment, and will probably require a bit more than only enabling the sevice on the proxy.

For a business, SSL is both a blessign and a curse, it enables them to handle things securely, but a the same time it can exploited to accomodate various purposes. It can be used to bypass security measures installed at the firewall, so every added security is more than welcome.
advertisement

Latest tech news headlines

RSS Feeds

Add headlines from CNET News to your homepage or feedreader.

More feeds available in our RSS feed index.

Markets

Market news, charts, SEC filings, and more

Related quotes

Dow Jones Industrials (6.54%) 494.13 8,046.42
S&P 500 (6.32%) 47.59 800.03
NASDAQ (5.18%) 68.23 1,384.35
CNET TECH (5.95%) 56.25 1,002.00
  Symbol Lookup
advertisement

Inside CNET News

Scroll Left Scroll Right
News
Latest news
Business tech
Green tech
Wireless
Security
Media
Popular topics
Apple iPhone
Apple iPod
CES
Cell phones
Dell
GPS
CNET sites
CNET Site map
CNET TV
Downloads
News
Reviews
Shopper.com
More information
Newsletters
Corrections
Customer Help Center
RSS
What's new
About CNET