SSL is simply a encryption protocol that is used to secure links between two endpoints. It is what makes HTTP secure by adding SSL/TLS to it, making it into HTTPS. While SSL/TLS can provide data integrity, authentication, and privacy, there are ways actors can take to compromise a user. For example, threat actors can make fake websites, conduct SSL/TLS interception attacks, and deliver encrypted malicious content.
This is why we have SSL/TLS inspection capability. SSL/TLS inspection inspects traffic that leaves and enters endpoints to ensure the traffic is secure. The inspection will help scan content for malicious content and block traffic to malicious websites. It also allows organizations to tackle privacy concerns and protect data under certain regulations like DSS, HIPPA, and GPDR. You would place interception proxy between the two endpoints like a computer and a server, which will intercept the traffic and decrypt it for inspection like a proxy or next gen firewall.
HansITAcademy 