Sign In with your
Trend Micro Account
需要協助?
需要協助?

若您需要技術支援,請 按此建立案件。

Addition of Port 443 to Application Types in Deep Security / Cloud One Workload Security

    • 更新於:
    • 27 Sep 2022
    • 產品/版本:
    • 作業系統:
概要

Starting in August 2022; Trend Micro began adding Port 443, a standard port for secured HTTP traffic (HTTPS), to support Advanced TLS Traffic Inspection within the Deep Security / Cloud One Workload Security Intrusion Prevention System (IPS). This change will allow the IPS system to monitor HTTPS traffic as well.

詳情
Public

Background

Trend Micro Cloud One Workload Security recently announced the “Advanced TLS Inspection” feature that enables decryption of SSL/TLS encrypted traffic used in HTTPS protocol on web servers.

Advanced TLS traffic inspection is enabled by default when the intrusion prevention module is turned on. You can verify the status of the feature by viewing the policy properties: Policy > Intrusion Prevention > General > Advanced TLS Traffic Inspection.

To utilize this feature, it is necessary to monitor HTTPS traffic, requiring the addition of port 443 in web server Application Types.

Details

The following Application Type(s) have been updated to reflect this change. This page will be updated for more Application Types are they are released.
  • Web Application Tomcat
  • Web Server SharePoint
  • Web Server IIS
  • Web Application Common
  • Web Server Apache
  • Web Server Miscellaneous

Recommendation

If the “Advanced TLS Inspection” feature on current versions of Deep Security or “SSL Inspection” on older versions of DS are not enabled, then it is recommended port 443 be removed from the Application Types. Otherwise, monitoring encrypted traffic could result in false positives within some environments.
Premium
Internal
Partner
評價:
分類:
Configure; Deploy; Remove a Malware / Virus; Update
解決方案ID:
000291421
評定這個解決方案
本文是否幫助解決您的問題?

感謝您的意見!


本意見調查系統為自動運作,將不會回覆如銷售、技術、產品等一般問題.

若您需要協助,請聯繫對應的技術支援窗口. 聯絡我們


To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.