Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Risk

Riverbed Steps on SSL Gas

Will add SSL traffic to its WAN optimization story next week

Could SSL data be the next big thing in WAN optimization? Riverbed hopes so. Next week, it will announce an upgrade of its RiOS WAN optimization software in an attempt to speed up SSL encrypted data. (See WAN Optimization Heats Up and WAN Optimization Inches On.)

Riverbed, which recently recorded its first quarter of profitability, is looking to tap into users' ongoing fear about data security with the release of new software for its Steelhead appliances. (See The Year of Data Protection, Users Look Ahead to 2007, VA Reports Massive Data Theft, and Portable Problems Prompt IT Spending.)

Typically, users are looking to encrypt data on financial applications such as SAP, Siebel, and Hyperion, as well as document management tools such as Vignette. (See Oracle Hops on Hyperion, SAP Turns to Brocade, and Oracle Buys Siebel.)

At least one analyst agrees that users are focusing more attention on encrypted data at the moment. "SSL traffic is not going down at all -- there's more and more traffic being encrypted all the time," says Zeus Kerravala of the Yankee Group. "I think that the ability to handle SSL will become one of the top features these [WAN optimization] products will have."

Riverbed is not the first WAN optimization vendor to focus its attention on SSL traffic; Blue Coat Systems also speeds up encrypted data, but is taking a different approach.

Blue Coat copies SSL certificates to its branch office SG devices in order to speed up SSL traffic, unlike Riverbed, which stores SSL certificates in a centrally located Steelhead appliance. "With Riverbed, the certificate is stored on one site -- at the data center," says Apurva Davé, Riverbed's director of product marketing.

When the Riverbed devices need to speed up SSL encrypted data, the central Steelhead issues a temporary SSL key to the branch office device. The idea is that IT managers no longer need to install certificates right across their infrastructure. "Firms could have thousands of branch offices so that makes the administrator's life easier," says Kerravala.

Other WAN optimization vendors are also looking at SSL encrypted data. Both Juniper and Expand Networks, for example, told Byte and Switch that the technology is on their roadmaps, but neither would say when it will be generally available.

A New York-based systems engineer in a media firm, who asked not to be named, told Byte and Switch that RiOS 4.0 has let him centralize a number of in-house multimedia applications. Before deploying the software upgrade, he explains, concerns about network security forced him to install the applications in both his central data center and his regional sites.

The engineer hopes that this will open the door to "significant" cost savings by reducing his expenditure on Web servers at his regional sites, although he wants to see more enhancements from Riverbed in the future.

RiOS 4.0, for example, lets users set up two Steelheads side-by-side in a data center and share cached data from an appliance in a remote site to speed up data transfer, although the engineer wants more. "Making cached data replicated to more than two Steelheads would give me the ability to handle more throughput," he says. "Now, with two of Riverbed's larger units side-by-side, it can handle what we need, but, two years from now it won't be able to."

RiOS 4.0, which also includes enhanced TCP optimization, is available now at no extra cost to users with current Riverbed licenses.

— James Rogers, Senior Editor Byte and Switch

  • Blue Coat Systems Inc. (Nasdaq: BCSI)
  • Expand Networks Inc.
  • Juniper Networks Inc. (Nasdaq: JNPR)
  • Riverbed Technology Inc. (Nasdaq: RVBD)
  • Yankee Group Research Inc.

    Comment  | 
    Print  | 
    More Insights
  • Comments
    Newest First  |  Oldest First  |  Threaded View
    COVID-19: Latest Security News & Commentary
    Dark Reading Staff 9/21/2020
    Cybersecurity Bounces Back, but Talent Still Absent
    Simone Petrella, Chief Executive Officer, CyberVista,  9/16/2020
    Meet the Computer Scientist Who Helped Push for Paper Ballots
    Kelly Jackson Higgins, Executive Editor at Dark Reading,  9/16/2020
    Register for Dark Reading Newsletters
    White Papers
    Video
    Cartoon
    Current Issue
    Special Report: Computing's New Normal
    This special report examines how IT security organizations have adapted to the "new normal" of computing and what the long-term effects will be. Read it and get a unique set of perspectives on issues ranging from new threats & vulnerabilities as a result of remote working to how enterprise security strategy will be affected long term.
    Flash Poll
    How IT Security Organizations are Attacking the Cybersecurity Problem
    How IT Security Organizations are Attacking the Cybersecurity Problem
    The COVID-19 pandemic turned the world -- and enterprise computing -- on end. Here's a look at how cybersecurity teams are retrenching their defense strategies, rebuilding their teams, and selecting new technologies to stop the oncoming rise of online attacks.
    Twitter Feed
    Dark Reading - Bug Report
    Bug Report
    Enterprise Vulnerabilities
    From DHS/US-CERT's National Vulnerability Database
    CVE-2020-25514
    PUBLISHED: 2020-09-22
    Sourcecodester Simple Library Management System 1.0 is affected by Incorrect Access Control via the Login Panel, http://<site>/lms/admin.php.
    CVE-2020-25515
    PUBLISHED: 2020-09-22
    Sourcecodester Simple Library Management System 1.0 is affected by Insecure Permissions via Books > New Book , http://<site>/lms/index.php?page=books.
    CVE-2020-14022
    PUBLISHED: 2020-09-22
    Ozeki NG SMS Gateway 4.17.1 through 4.17.6 does not check the file type when bulk importing new contacts ("Import Contacts" functionality) from a file. It is possible to upload an executable or .bat file that can be executed with the help of a functionality (E.g. the "Application Star...
    CVE-2020-14023
    PUBLISHED: 2020-09-22
    Ozeki NG SMS Gateway through 4.17.6 allows SSRF via SMS WCF or RSS To SMS.
    CVE-2020-14024
    PUBLISHED: 2020-09-22
    Ozeki NG SMS Gateway through 4.17.6 has multiple authenticated stored and/or reflected XSS vulnerabilities via the (1) Receiver or Recipient field in the Mailbox feature, (2) OZFORM_GROUPNAME field in the Group configuration of addresses, (3) listname field in the Defining address lists configuratio...