Oct 10, 2018

[HDGEM] Cloud WAFs are HTTPS interception products.

Could WAFs decrypt traffic and in some configurations they either don't re-encrypt it, or they don't perform certificate validation to verify the identity of the website being visited. This breaks end-to-end encryption.

--
Posted By Blogger to HDGEM at 3/18/2017 07:49:00 PM