Decrypting SSL and TLS Traffic in Network Insights
SUMMARY To find hidden threats, it might be necessary to decrypt SSL and TLS traffic that is processed by JSA.
For Network Insights deployments, it is recommended that you use a dedicated man-in-the-middle solution where the clear text output is fed into JSA.
If you do not want to deploy a man-in-the-middle solution, limited decryption capabilities are available within JSA if the required keys are available. You will experience performance degradation if you enable the decryption capability.
- SSL v3
- TLS v1.0
- TLS v1.1
- TLS v1.2
The Diffie Hellman key exchange mechanism is not supported when encrypted traffic is decrypted through a private key. When you use a private key, other key exchange methods, such as RSA, are supported.