Symantec SSL Visibility Appliance

Blue Coat SSL Visibility Appliance

Clear your encrypted traffic blind spot

Use of Secure Sockets Layer (SSL) or Transport Layer Security (TLS) encryption is pervasive and growing rapidly worldwide as up to 70% of enterprises’ network traffic uses SSL / TLS encryption. Encryption protects data from being viewed in transit over the Internet, but it also creates a significant blind spot for advanced malware while introducing privacy and regulatory compliance risks.

You need to manage this dilemma by establishing a comprehensive encrypted traffic management strategy that addresses acceptable-use policies for inbound and outbound encrypted traffic, in an extensible architecture that will scale and protect the business, while also adhering to privacy and compliance requirements.

Encrypted traffic presents massive challenges for organisations wishing to protect themselves, and the management of encrypted traffic is a sophisticated discipline. While others treat SSL management as a “side show” and deliver rudimentary useless capabilities, the Blue Coat SSL Visibility Appliance is the only dedicated enterprise-class encrypted traffic management technology in the industry. This unique solution offers complete visibility and control of encrypted traffic without requiring the re-architecture of network infrastructure. It lets you add policy-based SSL inspection and management capabilities to your network security architecture and lift the security blindfold created by encrypted traffic.

Benefits

Powerful

This powerful, purpose-built technology eliminates the SSL / TLS blind spot in your network infrastructure. This unique appliance automatically sees all SSL / TLS traffic – all ports and applications – without the need for complex scripting or configuration. This means you’ll spend less time administering your network security while having a more complete view of what encrypted applications and hidden potential threats are running in and out of your organisation.

Enterprise class

Blue Coat’s SSL Visibility Appliance is comprehensive, extensible solution that assures high-security encryption. While other vendors only support a handful of cipher-standards, the SSL Visibility Appliance provides timely and complete standards support, with over 70 cipher suites and key exchanges offered, and growing. Furthermore, unlike competitive offerings, this solution does not “downgrade” cryptography levels and weaken your organisation’s security posture, putting it at greater risk. As the SSL/TLS standards evolve, so will the management and enforcement capabilities of the SSL Visibility Appliance.

Cost effective

This solution cost-effectively enhances your existing security infrastructure. Recognizing that multiple devices need access to SSL/TLS traffic in your infrastructure, this solution can feed active and passive devices simultaneously (“Decrypt Once, Feed Many”), perfectly complementing your existing security solutions (e.g. DLP, IPS, NGFW, sandbox) without breaking your budget or hindering their performance. This avoids the 3x to 5x hardware capacity upgrade costs typically required by these security solutions needing SSL inspection. Further, it equips network forensics and incident response technologies to gain appropriate visibility into encrypted traffic, which is critical in breach-related events.

Protects privacy and compliance

SSL VA preserves data privacy and compliance while enabling comprehensive security. The SSL Visibility Appliance is a powerful policy-enforcement point for controlling SSL/TLS traffic throughout your organisation. Offering selective decryption based on policies, the solution can be customized per organisational needs. Utilising its unique Host Categorisation service combined with Blue Coat’s market-leading Global Intelligence Network, the SSL Visibility Appliance can easily help your organisation balance data privacy and security demands and satisfy your Legal, Compliance and Risk Management teams. Additionally, the SSL Visibility Appliance ensures data integrity and auditing of the decrypted data it manages – simplifying monitoring and logging of data for compliance purposes.

Features

Provides Unmatched Visibility into Encrypted Traffic to Protect Against Advanced Threats

  • Automatically identifies all SSL/TLS traffic regardless of port number or application
  • Uncovers hidden threats that use SSL to bypass detection, such as the Dyre and Zeus trojans, Upatre Command and Control (C&C), VMZeus C&C, etc.

Supports Privacy and Compliance Initiatives

  • Selectively decrypts traffic to meet data privacy and compliance requirements
  • Enforces acceptable use policies for encrypted traffic

Integrates Seamlessly with the Existing Security Infrastructure

  • Preserves and extends the ROI of the infrastructure
  • Supports multiple network segments and can feed active and passive security appliances simultaneously

Simplifies Management and Administration

  • Delivers detailed logs and alerts to easily spot trends and potential issues with SSL use
  • Utilises Management Centre for configuration backup, scheduling and synchronisation

Specifications

Specifications shown for the top-of-the-line model. Full specs available in the datasheet.

SV800-250M-C

  • Total Packet Processing Capability: 8 Gbps
  • SSL Inspection Throughput: 250 Mbps
  • Cut-Through Latency: <40µs
  • Concurrent SSL Flow States: 20,000
  • New Full Handshake SSL Sessions: 1,000 per second
  • SSL Session Log Entries: 32,000,000

SV800-500M-C

  • Total Packet Processing Capability: 8 Gbps
  • SSL Inspection Throughput: 500 Mbps
  • Cut-Through Latency: <40µs
  • Concurrent SSL Flow States: 20,000
  • New Full Handshake SSL Sessions: 2,000 per second
  • SSL Session Log Entries: 32,000,000

SV1800-C/-F

  • Total Packet Processing Capability: 8 Gbps
  • SSL Inspection Throughput: 1.5 Gbps
  • Cut-Through Latency: <40µs
  • Concurrent SSL Flow States: 100,000
  • New Full Handshake SSL Sessions: 7,500 per second
  • SSL Session Log Entries: 32,000,000

SV2800

  • Total Packet Processing Capability: 20 Gbps
  • SSL Inspection Throughput: 2.5 Gbps
  • Cut-Through Latency: <40µs
  • Concurrent SSL Flow States: 200,000
  • New Full Handshake SSL Sessions: 10,500 per second
  • SSL Session Log Entries: 32,000,000

SV3800

  • Total Packet Processing Capability: 40 Gbps
  • SSL Inspection Throughput: 4 Gbps
  • Cut-Through Latency: <40µs
  • Concurrent SSL Flow States: 400,000
  • New Full Handshake SSL Sessions: 12,500 per second
  • SSL Session Log Entries: 32,000,000

SV3800B-20

  • Total Packet Processing Capability: 40 Gbps
  • SSL Inspection Throughput: 9 Gbps
  • Cut-Through Latency: <40µs
  • Concurrent SSL Flow States: 800,000
  • New Full Handshake SSL Sessions: 30,000 per second
  • SSL Session Log Entries: 32,000,000

A Technology Brief on SSL/TLS Traffic

How to manage the increasing SSL traffic within enterprise networks and protect them from growing hidden threats and advanced malware

Resources

Book a Demo

See Blue Coat SSL Visibility Appliance in Action