NETGEAR STM150 - ProSecure Web And Email Threat Management Appliance Reference Manual page 120
Web/email security threat management appliance
Hide thumbs
Also See for STM150 - ProSecure Web And Email Threat Management Appliance:
- Installation manual (2 pages) ,
- Appliance reference manual (248 pages) ,
- Reference manual (95 pages)
Table of Contents
Advertisement
The following figure shows the HTTPS scanning traffic flow:
Figure 65.
The HTTPS scanning process functions with the following principles:
•
The STM breaks up an SSL connection between an HTTPS server and an HTTP client
into two parts:
-
A connection between the HTTPS client and the STM
-
A connection between the STM and the HTTPS server
•
The STM simulates the HTTPS server communication to the HTTPS client, including the
SSL negotiation, certificate exchange, and certificate authentication. In effect, the STM
functions as the HTTPS server for the HTTPS client.
•
The STM simulates the HTTPS client communication to the HTTPS server, including the
SSL negotiation, certificate exchange, and certificate authentication. In effect, the STM
functions as the HTTPS client for the HTTPS server.
During SSL authentication, the HTTPS client authenticates three items:
•
Is the certificate trusted?
•
Has the certificate expired?
•
Does the name on the certificate match that of the website?
120 |
Chapter 4. Content Filtering and Optimizing Scans
ProSecure Web/Email Security Threat Management (STM) Appliance
Advertisement
Table of Contents
Troubleshooting
