{"id":117847,"date":"2020-08-20T18:00:44","date_gmt":"2020-08-21T01:00:44","guid":{"rendered":"https:\/\/www.paloaltonetworks.com\/blog\/?p=117847"},"modified":"2020-08-20T11:58:43","modified_gmt":"2020-08-20T18:58:43","slug":"network-advances-in-decryption","status":"publish","type":"post","link":"https:\/\/www2.paloaltonetworks.com\/blog\/2020\/08\/network-advances-in-decryption\/","title":{"rendered":"Advances in Decryption with PAN-OS 10.0"},"content":{"rendered":"

During the launch of the world\u2019s first ML-Powered NGFW with PAN-OS 10.0, we were excited to hear from thousands of customers, many of whom joined us during virtual events for questions and discussion. Some of the questions we\u2019ve received center around advances in decryption features introduced in PAN-OS 10.0, and I\u2019d like to elaborate on this particular functionality.\u00a0<\/span><\/p>\n

Our customers have been using the decryption capabilities available in PAN-OS over the last 10 years, but the need for simplifying decryption has recently become even more critical. Luckily, PAN-OS 10.0 includes advances in decryption to match the growing challenges for organizations.\u00a0<\/span><\/p>\n

 <\/p>\n

Increasing Encryption Raises Security Concerns<\/span><\/h2>\n

Encrypted data has exploded to around 95% of enterprise traffic.<\/span> With increasing concerns about end-user privacy, major browsers, content providers and web developers are embracing encryption and pushing for its use on all web properties. While this is great news for the end user, here\u2019s the problem: <\/span>Encryption provides confidentiality and privacy<\/span>, but it does not guarantee the presence of security,<\/span> and it presents the perfect opportunity for malware to hide. It\u2019s expected that this year <\/span>70% of malware will use encryption to evade security measures<\/span><\/a>.\u00a0<\/span><\/p>\n

We\u2019ve been hearing from our customers that they see an order of magnitude increase in encrypted traffic, primarily driven by the adoption of public cloud and SaaS applications, which increasingly adopt HTTP\/2 over TLS and modern encryption protocols like TLS1.3. The combination of increasing encryption and the security concerns it brings has put deploying decryption projects center stage for most organizations.\u00a0<\/span><\/p>\n

 <\/p>\n

How You Can Deploy Decryption Where It\u2019s Needed<\/span><\/h2>\n

The new innovations in PAN-OS 10.0<\/a> address the importance of decryption for our customers by making it easy for you to deploy decryption where it\u2019s needed, and by delivering complete visibility into the details of all your encrypted connections<\/span> to help you implement and operationalize decryption<\/span>. This visibility empowers you to roll out decryption in a safe and straightforward way that actually works. Here are some of the decryption features in PAN-OS 10.0:<\/span><\/p>\n