|
SSL/TLS INSPECTION Check Point SSL Protector provides a simple one-box solution for high-performance visibility into enterprise SSL/TLS traffic. It removes the blind spot introduced by the rising use of SSL/TLS and allows security tools to inspect all traffic for possible breaches and leaks. SSL Protector acts as a central switching point for Check Point perimeter network security solutions, steering the decrypted traffic before re-encrypting it on the way to its destination server. Protector also provides scalability and high availability for Check Point Next Generation Threat Prevention. FULL VISIBILITY INTO SSL/TLS TRAFFIC By providing visibility into SSL/TLS traffic and offloading the SSL processing from your perimeter security devices, SSL Protector greatly enhances any organizations' security and maximizes its security infrastructure. As a smart centralized traffic steering solution, SSL Protector, with its high capacity SSL hardware engine, decrypts all relevant SSL traffic before forwarding it to Check Point security solutions and re-encrypts the traffic before forwarding it to the final destination. By performing the traffic decryption and re-encryption once for inspection, SSL Protector provides lower latency for all transactions and increases performance. It reduces the performance penalty up to 80% versus activating SSL traffic inspection in each of the security solutions, reducing the overall cost of the solution. High Volume SSL Traffic Inspection Check Point SSL Protector platforms contain hardware-based SSL engines which cost-effectively handle high capacity SSL/TLS transactions and processing of multi-gigabit per second of SSL traffic. The need to process higher volumes of traffic with stronger encryption ciphers has placed a heavy toll on computational and memory resources and is especially critical for IoT and mobile devices. This has led the industry to introduce a stronger yet much more efficient encryption algorithm based on elliptic curve cryptography. To provide cost effective support for the latest SSL/TLS standards, the Protector solution incorporates the latest SSL software and hardware engines, enabling high-capacity ECC-based SSL/TLS transaction processing with leading price-performance ratio across all its platform and form factor range. Security Scalability and Availability The unique deployment architecture of SSL Protector and its inherent load balancing capabilities enables it to monitor and load balance each security server separately and thus provide seamless scalability and ensure traffic will always flow through the most available server. Even in cases where servers are down, SSL Protector provides a simple way to define whether to bypass an unresponsive security service, ensuring continuous internet connectivity, or to block the traffic and avoid cyber threats. Granular Traffic Inspection Policies SSL Protector provides total control over the chaining of available security devices, enabling inspection of different traffic flows by different security device chains, based on granular filters classifying the traffic to different categories. As a result, organizations can avoid inspection of traffic they consider safe and save significant resources on their security devices, and thus optimize their utilization and their total cost of ownership. Decisions can be made on a multitude of parameters, from ports and IP addresses to hosts or web category based on third-party URL categorization feed. | 
Shop with confidence! Provantage is an authorized Check Point dealer.