Application firewall, IDP, and application tracking with SSL proxy

With the implementation of SSL proxy, application ID can identify applications encrypted in SSL. SSL proxy can be enabled as an application service in a regular firewall policy rule. IDP, application firewall, and application tracking services can use the decrypted content from SSL proxy. On the SSL payload, IDP can inspect attacks and anomalies; for example, HTTP chunk length overflow on HTTPS. On encrypted applications, such as Facebook, application firewall can enforce policies and application tracking (when configured in the from and to zones) can report logging issues based on dynamic application and nested application.