SSL Traffic Considerations

WebApp Secure includes SSL decryption capabilities to give it visibility into all of the protected application's traffic. It supports two modes: Passive Decryption and SSL Termination. In Passive Decryption mode, WebApp Secure decrypts requests for processing, then re-encrypts them before sending them on to the application server. HTTPS responses to the user follow the same process, where they are decrypted, processed, and re-encrypted before returning to the user. In SSL Termination mode, the appliance serves as an SSL termination point. It decrypts incoming HTTPS traffic, processes them, then proxies the decrypted requests on to the application. Responses to the user are received unencrypted from the application server, processed, encrypted, then passed to the user.