Aladdin Knowledge Systems, the leader in Software DRM, USB-based authentication, and secure Web gateways, announced that Aladdin eSafe 6, its comprehensive platform for spyware control, Web browsing security, application filtering, and anti-virus, now offers a new option that allows organizations to inspect Secure Socket Layer (SSL) encrypted HTTP traffic. Delivered on the eSafe Hellgate appliance, eSafe Web SSL reveals malware threats hidden in encrypted traffic, helps enforce content security policy for all Web traffic, and enhances HTTPS certificate validation and authorization.

    As the levels of encrypted traffic continue to grow rapidly, hackers and malware writers are turning the benefits of SSL upside down to make their malware invisible to firewalls, intrusion prevention and gateway antivirus products. This new feature - eSafe Web SSL - provides another valuable layer of security for eSafe customers that protects against threats that arrive from the Web and use the HTTPS protocol.

    All eSafe Hellgate appliances come preconfigured with best practices security configurations; ensure built-in load-balancing and fail-over with a new eSafe Cluster mode; and provide full flexibility to be customized as an organization's needs change.

    Secure Socket Layer (SSL) communications remain a significant concern for organizations, as this concealed traffic serves as an open avenue for infecting organizations with numerous threats. The lack of manageability and filtering of SSL traffic can jeopardize compliance with existing privacy and confidentiality regulations. In addition, Trojans, viruses, spyware, digital contraband such as copyrighted material and confidential files, as well as inappropriate content can also be transported in and out of networks if SSL encrypted HTTP traffic is not monitored.

    The new SSL content inspection technology inside Aladdin eSafe 6 answers organizations' SSL security concerns, providing constant, granular inspection of this once invisible traffic. The advanced technology allows all security policies that apply to HTTP traffic to easily apply to HTTPS encrypted traffic, halting malware from infiltrating networks through encrypted channels and closing the door to rogue applications.

    "The Internet continues to be the #1 vector for malware attacks that infect the enterprise," said Brian Burke, research manager for IDC's Security Products program. "Driven by monetary gain as well as corporate and government-sponsored espionage, these attacks exploit gaps in organizations' Web content security. eSafe's ability to fully inspect SSL communications as well as regular Web traffic gives enterprises a powerful new tool for hardening their Web security."

Specific advantages of the eSafe SSL solution include:
    - All certificates are inspected and allowed or denied at the gateway level based on security policies, not the discretion of the user
    - Decryption and encryption of all inbound and outbound SSL ("HTTPS") traffic
    - Supports unlimited, multiple accounts with role-based, multi-admin administration
    - Auto-add and categorize Root- and Sub-CA
    - Extensive incident management capabilities
    - Automatic revocation checking with CRL and OCSP support
    - Easy one-click management of digital certificates
    - Root and Client CA store
    - On-the-fly exception handling based on URL and certificate fingerprint
    - Flexible black and white lists
    - Extensive reporting