topic Re: Schedule for next AsyncOS release in Web Security

Schedule for next AsyncOS release

gsc_ironport — Fri, 11 Jan 2008 00:08:08 GMT

All,

I have read in one reply that some "issues" are fixed now with AsyncOS 5.5. Any information as to when this version will be released?

Thank you!

Re: Schedule for next AsyncOS release

Pat_ironport — Fri, 11 Jan 2008 01:18:34 GMT

The Release 5.5.1 is already available for download.
Do you mean 6.x?

Re: Schedule for next AsyncOS release

gsc_ironport — Fri, 11 Jan 2008 16:15:51 GMT

Aren't you mixing up Web Security with Email Security? 5.5.1 is available for Email Security, however not (yet) for Web Security where 5.2.0 is the latest available version. Right?

Re: Schedule for next AsyncOS release

Pat_ironport — Fri, 11 Jan 2008 20:41:58 GMT

You are right, sorry for my mistake! :oops:

Re: Schedule for next AsyncOS release

jowolfer — Fri, 11 Jan 2008 23:31:53 GMT

5.5.0 is available, but is a very limited release, being that it just finished the Beta process.

We currently do not yet have an ETA on a fully public release.

Re: Schedule for next AsyncOS release

markfisher1 — Sat, 09 Feb 2008 09:25:12 GMT

What does 5.5.0 fix from the current version? What new features does it enable? Thank you.

Re: Schedule for next AsyncOS release

Jason_ironport — Sat, 09 Feb 2008 10:28:54 GMT

The list of resolved bugs will continually evolve until the general release of 5.5.0 (probably sometime in Q2 CY08).

As far as new features, the most notable new feature in 5.5.0 will be the addition of HTTPS traffic inspection.

-Jason

Re: Schedule for next AsyncOS release

ezekiel_ironport — Thu, 20 Mar 2008 21:40:44 GMT

Dear Jason,

Can you briefly explain how does WSA perform HTTPS termination and inspection?

Thanks,
ezekiel

Re: Schedule for next AsyncOS release

jowolfer — Sat, 22 Mar 2008 00:05:39 GMT

Ezekiel,

The short explanation is that the WSA executes a typical man in the middle SSL attack.

The WSA initiates SSL sessions with both the client and the server. After receiving the certificate from the server, the WSA generates it's own certificate and serves it to the client.

Since the certificate used to generate server certs is not trusted by the browsers, the browser will receive a trust warning. You can get around this by loading the CA cert into the clients on your network.

Re: Schedule for next AsyncOS release

Jason_ironport — Sat, 22 Mar 2008 02:48:14 GMT

Just to make that a little more visual:

Client <- SSL Conn 1 -> WSA <- SSL Conn 2 -> Web Server

Since the WSA is in the middle of these SSL connections, it can see the traffic unencrypted, but you still maintain SSL security across the Internet and LAN.

For any sites with highly sensitive information (such as financial sites), you will also have the ability to set these categories to Pass-Through, so the WSA will not decrypt these connections.

-Jason

Re: Schedule for next AsyncOS release

ezekiel_ironport — Sun, 23 Mar 2008 21:54:54 GMT

Thank you Jason and Josh.

Regards,
ezekiel

Any update on the release dtae for 5.5.0?

jhouck99_ironport — Sat, 14 Jun 2008 05:36:42 GMT

Thanks...