Quote:
Originally Posted by Damien
What does the client facing gateway do? I am trying to work out a way it can hijack the users' SSL communication with the server.
|
It's the network device which terminates the client connection. Depending on the use case perhaps a dedicated proxy or next gen firewall/security appliance.
SSL inspection/interception you'll generally only encounter on a private, corporate network (for data protection legislative reasons).
It's a man-in-the-middle type mechanism which works by way of an "Inspection certificate" installed on your machine or device. This allows the proxy/gateway to terminate your https requests, inspect the payload and make a forward connection to the site you have requested.
The certificate may be propagated by group policy on a corporate machine in an enterprise environment or you'd perhaps be prompted to accept it as part of an internet access aup.