Basic question about SSL decryption

anowell · ‎11-18-2016

If I were to implement SSL decryption, does Firepower essentially act as a man-in-the-middle allowing the module to see all traffic going to and from the private client and public server? If this is the case, what is protecting the user from having their banking or any other private information from being seen and stolen by the Firepower administrator? Also, assuming the module can "see" the unencrypted data, is it possible for the user/server to sense and stop this type of behavior?

Thank you!

Simon Brooks · ‎11-21-2016

Yes

Nothing

No.

Basic question about SSL decryption

Cisco Umbrella DNS - Intelligent Proxy e SSL Decryption

Port-Security - Configuração Básica

SSL Decryption On Cisco Secure Firewall at Glance and simplified

Cisco Umbrella Intelligent Proxy and SSL Decryption implementation

Basic enable mode question