SSL/TLS Visibility Solution
Application Insight
SSL/TLS Visibility Appliance
SSL/TLS Visibility Appliance
More than 80% of all web traffic is encrypted AISVA addresses security blind spots and enhances the performance of security equipment
Product Overview
MONITORAPP AISVA
A security solution that provides network visibility to complete seamless security.
Encrypted traffic cannot be blocked since hidden malware are not detected unless the traffic is decrypted. However, only about 20% of existing security equipment can perform SSL encryption, and the process of decryption can cause performance degradation of existing security equipment, resulting in a delay in network response speed. This is why we need a specialized encryption tool for SSL/TLS traffic. MONITORAPP AISVA (Application Insight SSL Visibility Appliance) completes a tight security system by providing bidirectional encryption-decryption for servers and clients, ensuring industry-leading performance and network visibility through a combination of proxy technologies optimized for encryption and decryption of SSL/TLS-based traffic (HTTPS, SMTPS, POP3S, etc.).
Work with any security equipment, any environment.
MONITORAPP’s AISVA provides visibility to IPS, WAF, APT, DLP, etc. to work with existing security equipment for maximum performance of each security equipment. Encryption is provided for all application protocols that use standard SSL / TLS, such as POP3, SMTPS, and FTPS. It supports various protocol versions from SSLv3 to TLS1.0, TLS1.1, TLS1.2 and TLS 1.3 and various algorithms such as RSA, AES, MD5.
Same visibility for IPv4, IPv6 networks.
for two-way encrypted traffic.
Encrypted traffic entering the internal data center is processed based on the IP: PORT or domain information specified for decryption, and encrypted traffic communicating to the external Internet section automatically selects and decrypts SSL/TLS traffic without specifying a separate decryption target.
Ensure maximum speed.
AISVA provides the industry’s best performance by combining software encryption/decryption processing technology and hardware (SSL Accelerator Card) processing technology for SSL / TLS traffic based on Full Transparent Proxy, minimizing network delay for encryption traffic processing.
Handle traffic quickly without certificate problems.
Automated SSL / TLS traffic screening and encryption are performed to gain visibility into outbound traffic. We made it more convenient by providing the automatic distribution of certificates required for SSL encryption and decryption. A list of applications that cannot communicate through SSL due to certificate pinning is regularly updated. It also enables self-learning and bypassing by system settings apart from just the updated list, thus eliminating problems caused by certificate pinning.
To gain visibility into inbound traffic, the same certificate and private key inserted into the SSL server must be inserted into AISVA.
The inserted certificate and private key are securely encrypted and managed in the system.
Support a variety of configuration environments.
Transparent Proxy technology enables easy deployment without changing network configuration. Inline type security solution in active section and out-of-path type security solution in passive section maintains existing network configuration of various security solutions. It provides NAT, multi-segment, and asynchronous network traffic handling, facilitating redeployment of network configurations for various security solutions.
Easy to manage.
Administrators can monitor overall network traffic and SSL traffic for SSL Full Handshake and Reuse.
Events are logged for all encrypted traffic that is processed, and events for bypass encrypted traffic are also logged.
You can flexibly configure Client, Server, and URL to be excluded from decryption.
