SSL Content Filtering

With the rapid adoption of cloud-based services and the push to Always-On SSL connections, networks are experiencing exponential growth of encrypted (SSL) traffic. However, SSL encryption is increasingly the weapon of choice for hackers to penetrate networks and steal confidential data without detection. For users, SSL also provides an easy way for them to bypass filtering policies, by using SSL Anonymous Proxies.

The Bloxx Web Filter includes certificate-based SSL Filtering as standard, providing protection for some basic SSL security threats. However, for additional levels of protection and to ensure that you proactively deal with more sophisticated SSL threats, you can optionally add Bloxx SSL Intercept (SSLI), an SSL Content Proxy to the Bloxx Web Filter.

The combination of Bloxx SSLI and Tru-View Technology (TVT), our patent-applied-for real-time content categorization engine, delivers unsurpassed levels of security and protection against even the most sophisticated SSL threats.

Improve Acceptable Use Policy Enforcement

SSL content filtering with SSLI and TVT allows you to control access based on the content of the requested page, reducing the reliance on a URL database and improving the accuracy of filtering to extend your AUP enforcement to SSL traffic.

Improve Security

SSL Web content is decrypted by SSLI and passed for scanning to the malware detection engine, increasing protection and eliminating potential security threats, which may be hidden inside the SSL traffic.

Increase Protection against Encrypted Anonymous Proxies

The number of available SSL Anonymous Proxies is on the increase. When connected to one of these sites, users are free to browse the Web unfiltered and unprotected against security risks and threats. This can affect user productivity, expose your organization to risk and reputational damage and expose your network and users to increased security risks. Other Web filters provided limited protection, but the unique combination of SSLI and TVT provides best-in-class protection against SSL Proxies, blocking access in real-time at the point of request.