Security Basics mailing list archives

Re: Securing the internet connections

From: "Colin Grady" <colin.grady () gmail com>
Date: Sun, 21 Sep 2008 13:40:29 -0500

The AIP-SSM is an IDS/IPS, not a web filter or anti-malware device. It
does not have the capability (that I'm aware of) to inspect HTTPS
sessions and has very limited malware detection in the current
signature set.

- Colin Grady


On Fri, Sep 19, 2008 at 8:57 AM, WALI <hkhasgiwale () gmail com> wrote:

With an advanced Inspection and Prevention Security Services Module
(AIP-SSM) for the Cisco ASA 5500 Series Adaptive Security Appliance residing
at my perimeter, I am in need of choosing a solution for granting safe and
secure Internet access to my 2000+ userbase on the inside. A solution that
would suffice as my proxy/web caching needs too and possibly allowing me to
do URL filtering according to my policy.

I was looking at secure computing's webwasher and Microsoft's ISA 2006 as
possible solutions. Bluecoat is expensive. These guys tout of their L7
capabilities to detect malwares and scan HTTPS traffic but I feel that my
AIP SSM should be able to do that job.

What do you guys advise!!?

Current thread:

Securing the internet connections WALI (Sep 19)
- Re: Securing the internet connections ॐ aditya mukadam ॐ (Sep 22)
- Re: Securing the internet connections Gleb Paharenko (Sep 22)
  - Re: Securing the internet connections WALI (Sep 22)
- Re: Securing the internet connections Matt - MRS Security (Sep 22)
- Re: Securing the internet connections Colin Grady (Sep 22)
- Re: Securing the internet connections Martin Spinassi (Sep 22)