A10 Networks have announced Borusan Holding, a US$4.8bn industrial group based in Turkey and operating in 10 countries, has selected A10 Thunder SSL Insight to help protect its network from hidden threats that may come in with the growing amount of encrypted internet traffic. Thunder SSLi is a comprehensive SSL/TLS decryption solution that enables security devices to efficiently analyze enterprise internet traffic against potential threats.
The vast majority of web and application traffic now is encrypted via SSL/TLS to ensure data integrity and privacy not necessarily security. And this creates real issues as security tools become blind to any nefarious activity happening in encrypted traffic – before the attack, during the attack, and even after the attack. Criminals take advantage of this and hide attacks in an enterprise’s encrypted traffic.
Guarding against such hidden threats is a top priority for Borusan. Volumes of encrypted web traffic were rising dramatically, driven by the adoption of Microsoft Office 365 and other cloud-based applications. Outbound SSL traffic was a growing blind spot.
“90% of our internet traffic is SSL. Almost all sophisticated security attacks use SSL traffic to hide themselves from security defenses. It is very important for us to be able to examine all encrypted traffic,” said Yasar Sarcan, chief information security officer (CISO) at Borusan Holding.
“We have 9,000 users and 2,000 servers accessing the internet via only one shared internet circuit. With A10 Thunder SSLi, we are better protected against hidden attacks. It gives us visibility into all encrypted attacks, and we have eliminated our blind spots. Now that we can intercept all of the traffic and check it out, we are better able to detect encrypted attacks,” said Cumhur Hatipoğlu, senior security architect at Borusan Holding.
Borusan evaluated the leading SSL inspection products and chose Thunder SSLi because of its leading interception technology, source-side NAT support, and integrated load balancing, which helps to distribute internet traffic between proxy appliances.
Thunder SSLi decrypts traffic across all ports, enabling third-party security devices to analyze all enterprise traffic without degrading performance. Thunder SSLi decrypts HTTPS traffic and forwards it in clear text to the firewall, proxy, IPS and deep-packet inspection solutions. Thunder SSLi then re-encrypts traffic and sends it off to its final destination.
“Today, encryption has become ubiquitous. And while encryption can ensure the privacy of the data, it can put enterprises at risk. Cyber criminals are increasingly taking advantage of encrypted traffic to launch phishing and ransomware attacks, and to spread viruses and Trojans embedded into documents. Thunder SSLi is a high-performance, dedicated SSL inspection solution that allows enterprises to remove the blind spots while maintaining compliance with privacy standards,” said Yasir Liaqatullah, vice president of product management at A10 Networks.