https://community.cisco.com/t5/network-security/basic-question-about-ssl-decryption/m-p/2928547#M18505 <P>If I were to implement SSL decryption, does Firepower essentially act as a man-in-the-middle allowing the module to see all traffic going to and from the private client and public server?&nbsp; If this is the case, what is protecting the user from having their banking or any other private information from being seen and stolen by the Firepower administrator?&nbsp; Also, assuming the module can "see" the unencrypted data, is it possible for the user/server to sense and stop this type of behavior?<BR /><BR /><BR />Thank you!</P> Fri, 18 Nov 2016 12:28:20 GMT anowell 2016-11-18T12:28:20Z https://community.cisco.com/t5/network-security/basic-question-about-ssl-decryption/m-p/2928547#M18505 <P>If I were to implement SSL decryption, does Firepower essentially act as a man-in-the-middle allowing the module to see all traffic going to and from the private client and public server?&nbsp; If this is the case, what is protecting the user from having their banking or any other private information from being seen and stolen by the Firepower administrator?&nbsp; Also, assuming the module can "see" the unencrypted data, is it possible for the user/server to sense and stop this type of behavior?<BR /><BR /><BR />Thank you!</P> Fri, 18 Nov 2016 12:28:20 GMT https://community.cisco.com/t5/network-security/basic-question-about-ssl-decryption/m-p/2928547#M18505 anowell 2016-11-18T12:28:20Z https://community.cisco.com/t5/network-security/basic-question-about-ssl-decryption/m-p/2928548#M18515 <P>Yes</P> <P>Nothing</P> <P>No.</P> Mon, 21 Nov 2016 23:34:41 GMT https://community.cisco.com/t5/network-security/basic-question-about-ssl-decryption/m-p/2928548#M18515 Simon Brooks 2016-11-21T23:34:41Z