The National Security Agency (NSA) has released a cyber advisory that addresses managing risk from Transport Layer Security Inspection (TLSI). This short, informative document defines TLSI (a security process that allows incoming traffic to be decrypted, inspected, and re-encrypted), explains some risks and associated challenges, and discusses mitigations. CISA encourages users and administrators to review the advisory and apply the information, as appropriate. It also points to its own alert on risks associated with HTTPS inspection for more information.
Attached Files:MANAGING RISK FROM TLS INSPECTION_20191106.PDF