Processing the rising tide of encrypted internet traffic

A10 Networks has introduced third-generation SSL/TLS hardware solutions to help organisations overcome the challenges of providing advanced SSL decryption and encryption for both application acceleration and security visibility.

  • 7 years ago Posted in
The rapid adoption of highly secure and compute-intensive standards, such as Elliptical Curve Cryptography (ECC) with Perfect Forward Secrecy (PFS) and App Transport Security (ATS), require organisations to meet this demand or risk losing increasingly security-conscious customers.
 
The Internet has seen an explosion of SSL encryption with up to 70 percent of traffic now being encrypted.  Cipher suite analysis also shows more than 85 percent of encrypted traffic is using ECC and PFS. There are many reasons why encryption adoption is climbing. For example, websites with encryption garner more favourable page rankings in Google searches. Another example could be a lack of ATS support potentially affecting app listing in the Apple App Store.  Ignoring encrypting traffic can directly impact a business’s revenue.
 
The third-generation SSL processors are available in select A10 Thunder® hardware appliances. Existing customers can upgrade select Thunder appliances. Unlike competitive solutions, A10’s “SSL modularity,” helps existing customers scale to accommodate future traffic without a forklift upgrade to replace their existing appliance, offering true investment protection and savings. A10’s new SSL solutions are available for Thunder ADC (Application Delivery Controller), Thunder SSLi (SSL Insight), and Thunder CFW (Convergent Firewall) product lines. 
 
A10 Thunder ADC’s application delivery and server load balancing functionality ensures application acceleration by offloading compute-intensive SSL/TLS processing from web servers.  This ensures fast and secure responses to customer requests. A10 Thunder SSLi provides visibility into encrypted traffic for a wide range of security vendors by eliminating the SSL blind spot, protecting enterprise users from attacks.
 
“Organisations cannot risk losing business by having to choose between security and performance, and now they don’t have to,” said Raj Jalan, CTO of A10 Networks. “High-profile data breaches have made one thing clear: The need for stronger encryption is here to stay. Our latest encryption solutions support the latest ciphers at scale, maintaining performance alongside the ability to offload traffic or allow for the inspection of encrypted traffic for potential threats.”
 
Solution highlights include:
 
·         High-performance encryption processing
o    Hardware-assisted processing of advanced ECC ciphers using third-generation of security processors.
o    Advanced cipher support processing in hardware, for example: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 and more.
·         Scalable performance and lowest TCO
o    Thunder ADC provides superior performance, with up to twice the connections per second (CPS) than competing vendors with ECC and PFS at a lower cost.
o    Thunder ADC, on a cost-per-SSL connection basis, can reduce the SSL offload cost by half compared to competing vendors.
o    Thunder SSLi can process more than 40 Gbps of traffic for SSL/TLS visibility with advanced ciphers.
·         Supported products
o    Thunder ADC, Thunder SSLi, and Thunder CFW product lines support the new third-generation security processors.
·         SSL Modularity
o    Select Thunder ADC, Thunder SSLi, and Thunder CFW hardware appliances can be upgraded as required, avoiding fork lift upgrades.
Research shows ‘game needs to be changed,’ with security innovation years behind that of the...
73% of organizations lack automated patch management, and 62% experienced incidents involving...
Quest Software has signed a definitive agreement with Clearlake Capital Group, L.P. (together with...
Dell EMC PowerProtect Cyber Recovery for AWS provides a fast, easy-to-deploy public cloud vault to...
Aqua’s cloud native application protection platform becomes the only solution that protects cloud...
54% of organisations working on a security transformation project now or in the next 12 months.
Node4 has released its Mid-Market IT Priorities Report 2021. The independent report reveals that...
Zscaler Zero Trust exchange cloud-based architecture enables superior green security capabilities...