The rapid adoption of highly secure and compute-intensive standards, such as Elliptical Curve Cryptography (ECC) with Perfect Forward Secrecy (PFS) and App Transport Security (ATS), require organisations to meet this demand or risk losing increasingly security-conscious customers.
The Internet has seen an explosion of SSL encryption with up to 70 percent of traffic now being encrypted. Cipher suite analysis also shows more than 85 percent of encrypted traffic is using ECC and PFS. There are many reasons why encryption adoption is climbing. For example, websites with encryption garner more favourable page rankings in Google searches. Another example could be a lack of ATS support potentially affecting app listing in the Apple App Store. Ignoring encrypting traffic can directly impact a business’s revenue.
The third-generation SSL processors are available in select A10 Thunder® hardware appliances. Existing customers can upgrade select Thunder appliances. Unlike competitive solutions, A10’s “SSL modularity,” helps existing customers scale to accommodate future traffic without a forklift upgrade to replace their existing appliance, offering true investment protection and savings. A10’s new SSL solutions are available for Thunder ADC (Application Delivery Controller), Thunder SSLi (SSL Insight), and Thunder CFW (Convergent Firewall) product lines.
A10 Thunder ADC’s application delivery and server load balancing functionality ensures application acceleration by offloading compute-intensive SSL/TLS processing from web servers. This ensures fast and secure responses to customer requests. A10 Thunder SSLi provides visibility into encrypted traffic for a wide range of security vendors by eliminating the SSL blind spot, protecting enterprise users from attacks.
“Organisations cannot risk losing business by having to choose between security and performance, and now they don’t have to,” said Raj Jalan, CTO of A10 Networks. “High-profile data breaches have made one thing clear: The need for stronger encryption is here to stay. Our latest encryption solutions support the latest ciphers at scale, maintaining performance alongside the ability to offload traffic or allow for the inspection of encrypted traffic for potential threats.”
Solution highlights include:
· High-performance encryption processing
o Hardware-assisted processing of advanced ECC ciphers using third-generation of security processors.
o Advanced cipher support processing in hardware, for example: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 and more.
· Scalable performance and lowest TCO
o Thunder SSLi can process more than 40 Gbps of traffic for SSL/TLS visibility with advanced ciphers.
· Supported products
o Thunder ADC, Thunder SSLi, and Thunder CFW product lines support the new third-generation security processors.
· SSL Modularity
o Select Thunder ADC, Thunder SSLi, and Thunder CFW hardware appliances can be upgraded as required, avoiding fork lift upgrades.
