If I were to implement SSL decryption, does Firepower essentially act as a man-in-the-middle allowing the module to see all traffic going to and from the private client and public server?  If this is the case, what is protecting the user from having their banking or any other private information from being seen and stolen by the Firepower administrator?  Also, assuming the module can "see" the unencrypted data, is it possible for the user/server to sense and stop this type of behavior?


Thank you!