TLS inspection technologies intercept and decrypt TLS traffic to check for malicious content or vulnerabilities. It then re-encrypts the traffic and forwards it to its destination. The capabilities help identify malware, data exfiltration, and other malicious traffic, and they also help ensure security compliance and the integrity of data in transit. This type of TLS inspection across all traffic flows can become burdensome for network and security teams, according to Cato, which is looking to simplify the process and enable customers to perform TLS inspection without disrupting business applications.
“IT security vendors continue to tout new capabilities and functionality, but if leveraging those capabilities is too difficult or complicated for enterprises, then what good are they?” said Shlomo Kramer, co-founder and CEO at Cato Networks, in a statement. “Safe TLS Inspection embodies that philosophy, enabling enterprises to take advantage of the full power of the SASE platform painlessly.”
With more than 90% of web communications using encryption, it is critical companies can safely inspect all traffic without missing blind spots. The new capabilities can automatically identify applications and domains safe for inspection, eliminating the need for bypass lists. Safe TLS Inspection also enables automated deployment, applying configurations with a few clicks based on best practices, the company says. Safe TLS inspection provides visibility into cloud traffic, enabling security teams to: