[19923] in cryptography@c2.net mail archive
Nonrepudiation - in some sense
daemon@ATHENA.MIT.EDU (leichter_jerrold@emc.com)
Fri Feb 10 14:35:12 2006
X-Original-To: cryptography@metzdowd.com
X-Original-To: cryptography@metzdowd.com
From: leichter_jerrold@emc.com
To: cryptography@metzdowd.com
Date: Fri, 10 Feb 2006 09:24:44 -0500
>From a description of the Imperva "SecureSphere" technology. Imperva makes
firewalls that can "look inside" SSL sessions:
SSL Security that Maintains Non-Repudiation
SecureSphere can inspect the contents of both HTTP and HTTPS
(SSL) traffic. SecureSphere delivers higher HTTPS performance
than competing reverse proxy point solutions because
SecureSphere decrypts SSL encrypted traffic but does not
terminate it. Therefore SecureSphere simply passes the encrypted
packets unchanged to the application or database server. This
eliminates the overhead of re-packaging (i.e. changing) the
communications, re-negotiating a new SSL connection to the
server, and re-encrypting the information. Moreover, it
maintains the non-repudiation of transactions since the
encrypted communication is between client and application with
no proxy acting as middleman.
-- Jerry
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
