Add SSL sniffing to your IDS
Because Secure Sockets Layer encryption is built into Web browsers, its a low-cost way to protect Internet communications. It's also a convenient way to hide a network attack.
Because it takes so much computing effort to decrypt an SSL stream and sniff out attacks, intrusion detection devices have ignored SSL traffic, giving exploits hidden in SSL-encrypted streams a good chance at succeeding.
Breach Security Inc. of Carlsbad, Calif., which just released its new line of BreachGate Sitegrity application security devices, spun off some of its core technology as BreachView SSL. The software can be added to IDS systems to decrypt and analyze SSL without interrupting the SSL session.