Blue Coat: Web Gateway Security with SafeNet

SSL Visibility Appliance:Web Firewall and Gateway

The SSL Visibility Appliance is a powerful, purpose-built solution that decrypts incoming or outgoing SSL traffic and provides that content to security appliances for inspection based on defined policies. This provides IT security administrators with the visibility and control necessary to address threats and attacks that enter organizations by hiding in SSL encrypted traffic.  Once traffic is inspected and assured based on the established policies, the SSL appliance re-encrypts the data before sending it to its final destination.

SafeNet’s Java hardware security module (HSM), formerly Luna SP HSM, integrates with the SSL Visibility Appliance for secure SSL key storage. SafeNet’s Java HSMs are robust, high-availability, and high-performance appliances that store cryptographic materials (e.g. certificates, SSL private keys, etc.) in a secure FIPS 140-2 Level 3 tamper-proof hardware appliance. Storing these materials in a hardware appliance means the keys never leave the device, and cryptographic operations take place in the module to ensure the integrity of the entire cryptographic infrastructure.

Resources and Additional Information

Blue Coat SSL Visibility Appliance and SafeNet Java HSM Solution Brief

Blue Coat SSL Visibility Appliance and SafeNet Java HSM Integration Guide

Blue Coat HSM Agent for SafeNet Java HSM Integration Guide

Blue Coat Proxy SG with SafeNet Java HSM and SafeNet Authentication Solutions

ProxySG is a web access gateway that both secures web communications through SSL encryption and accelerates the delivery of business applications. SafeNet Java HSM hardware security modules (HSM) integrate with Blue Coat ProxySG to enhance the security of enterprise networks without compromising performance by storing certificates and SSL keys in secure, tamper-proof hardware. ProxySG monitors web traffic and delivers enterprise resources over SSL-protected tunnels so applications are available only to authorized users. By storing the SSL private keys in a HSM, enterprises ensure that essential encryption keys never leave the enterprise, and consequently, that network traffic is always secure between authenticated parties. SafeNet Java HSM also offloads cryptographic operations from ProxySG appliances to accelerate encryption processes and further increase overall server performance.

SafeNet Authentication Client (SAC) is a public key infrastructure (PKI) middleware that provides a secure method for exchanging information based on public key cryptography, enabling trusted third-party verification of user identities. SafeNet’s certificate-based tokens provide secure remote access, as well as other advanced functions, in a single token, including digital signing, password management, network logon, and combined physical/logical access.

SafeNet Authentication Manager (SAM) provides your organization with a comprehensive platform to manage all of your authentication requirements, across the enterprise and the cloud, in a single, integrated system. SAM enables management of the complete user authentication life cycle. SAM links tokens with users, organizational rules, and security applications to allow streamlined handling of your organization's authentication infrastructure with a flexible, extensible, and scalable management platform.

Resources and Additional Information

Blue Coat ProxySG and SafeNet Java HSM Solution Brief
Blue Coat HSM Agent for 
SafeNet Java HSM Integration Guide
SAS using RADIUS Protocol for Blue Coat Proxy SG
Using SAS as an Identity Provider for Blue Coat ProxySG
SAS Push OTP using RADIUS Protocol for Blue Coat Proxy SG
SAM using RADIUS Protocol for Blue Coat ProxySG
Using SAM with SAML as an Identity Provider for Blue Coat ProxySG 
Using SAC CBA for Blue Coat ProxySG
Using IDGo 800 Minidriver for Windows for Blue Coat ProxySG