|
|
RE: Security tool for monitoring HTTPS traffic?: msg#00093security.web-applications
> -----Original Message----- > From: John Reilly [mailto:JReilly@xxxxxxxxxxxx] > Sent: Wednesday, February 25, 2004 2:19 AM > To: webappsec@xxxxxxxxxxxxxxxxx > Subject: RE: Security tool for monitoring HTTPS traffic? > > > > > > I have a similar question too! > > > > Are they products they can look inside HTTPS traffic? Some > > customers doesn't > > trust HTTPS traffic going inside the company over the proxy! > > There is no way to look at the plain text content inside the > https traffic - that would defeat the whole purpose of https. > > Regards, > John This is false. If there were no way to look at the plain text content inside of HTTPS traffic it would be exceedingly difficult for the intended recipient to do anything useful with said HTTPS traffic (ie, one-way encryption). Cory Altheide Senior Network Forensics Specialist NNSA Information Assurance Response Center (IARC) altheidec@xxxxxxxxxx |
|
| <Prev in Thread] | Current Thread | [Next in Thread> |
|---|---|---|
| Previous by Date: | RE: Model for Field level Access Control: 00093, Paul John Summers |
|---|---|
| Next by Date: | RE: Controlling access to pdf/doc files: 00093, Noah Gray |
| Previous by Thread: | Re: Security tool for monitoring HTTPS traffic?i: 00093, lists AT dawes DOT za DOT net |
| Next by Thread: | RE: Security tool for monitoring HTTPS traffic?: 00093, John Reilly |
| Indexes: | [Date] [Thread] [Top] [All Lists] |
| News | FAQ | advertise |