HTTPS Internet traffic uses the TLS (Transport Layer Security) protocol and is encrypted to give data privacy and integrity. However, HTTPS traffic has a possible security risk and can hide illegal user activity and malicious traffic. Security Gateways cannot inspect HTTPS traffic because it is encrypted. You can enable the HTTPS Inspection
Feature on a Security Gateway that inspects traffic encrypted by the Secure Sockets Layer (SSL) protocol for malware or suspicious patterns. Synonym: SSL Inspection. Acronyms: HTTPSI, HTTPSi. feature to let the Security Gateways create new TLS connections with the external site or server. The Security Gateways are then able to decrypt and inspect HTTPS traffic that uses the new TLS connections.
There are two types of HTTPS Inspection:
Outbound HTTPS Inspection - To protect against malicious traffic that is sent from an internal client to an external site or server.
Inbound HTTPS Inspection - To protect internal servers from malicious requests that arrive from the Internet or an external network.
For more information, see HTTPS Inspection.