Go to the table of contents Go to the previous page Go to the next page View or print as PDF
Working With Encrypted Data
Working With Encrypted Data
Help | Content Gateway | Version 8.1.x
 
Related topics:
SSL (Secure Sockets Layer) and TLS (Transport Layer Security) are the industry standards for secure transmission of data on the Internet. They rely on data encryption and a system of trusted certificates issued by certificate authorities (CAs) that are recognized by clients and servers. SSL/TLS requests made in a browser are easily identified by the "https" string that leads the URL.
In the topics that follow, for convenience and simplicity, SSL/TLS is referred to simply as SSL.
To establish an SSL connection, the client sends an SSL connection request to the server. If the server consents, the client and server use a standard handshake to negotiate an SSL connection.
Content Gateway offers 2 types of support for HTTPS traffic. Only one can be used at a time.
*
*
*
*
*
The advanced proxy support is simply called HTTPS support or SSL support. How it works and how it's configured is described in the following sections.
In the Content Gateway manager, SSL support is enabled on the Configure > My Proxy > Basic > General page in the Protocols area with the HTTPS option.
 
Important 
Even when HTTPS support is not enabled and HTTPS is not decrypted, Content Gateway performs URL filtering. This means that for every HTTPS request received from a client, a URL lookup is performed and policy is applied.
 
Note 
When HTTPS is enabled, each HTTPS request consists of two separate sessions:
*
*
Different certificates are required for each session.
 
For additional information on SSL, TLS, and SSL/TLS certificates, search the Internet or consult any of the commercially available books.

Go to the table of contents Go to the previous page Go to the next page View or print as PDF
Working With Encrypted Data
Copyright 2016 Forcepoint LLC. All rights reserved.