117
Chapter 8: Implementing HTTPS/SSL Filtering with Optinet
Secure Socket Layer (SSL) is a technology that is used to encrypt data sent over the
network. (Newer versions of SSL are called Transport Layer Security or TLS. Statements in
this User Guide regarding SSL also apply to TLS.) This encryption is done to insure that the
data transmission is secure and only readable by the intended recipients. This technology is
most commonly associated with Secure Hypertext Transfer Protocol (HTTPS) sent over the
Internet.
For example, web pages such as banking or ecommerce sites post information that is very
sensitive for users, i.e., credit card numbers, social security numbers, etc. Because this
information is important, the web site must take some special precautions to make sure
that this information is not viewed by the wrong person. Also, the Web site needs to
confirm the identity of the site visitor and make sure that the transmission of data across
the Internet is not intercepted by anyone.
However, SSL can also be used to conceal web traffic and visit prohibited sites. The most
common practice of this is with proxy web sites or proxy web servers. Optinet uses
HTTPS/SSL Filtering to allow you to view and restrict Web traffic for secure web sites and
also prohibit users from viewing unauthorized content. This chapter can be used to enable
HTTPS/SSL Filtering. The following topics will be covered.
•
Certificate Authorities
•
SSL Anonymous Proxies
•
HTTPS/SSL Filtering
•
HTTPS/SSL Blocking
•
HTTPS/SSL Filtering Requirements