论文标题
终止或不终止负载平衡器处的安全套接字层(SSL)流量
To Terminate or Not to Terminate Secure Sockets Layer (SSL) Traffic at the Load Balancer
论文作者
论文摘要
在负载平衡器处终止或不终止安全套接字层(SSL)的概念始终产生有趣的对话。在本文中,作者以简单的方式解释了此类概念的利弊,还提供了建议的建议,以帮助组织了解与从负载平衡器流向应用程序服务器的未加密流量相关的安全含义。 关键字:安全套接字层(SSL),加载平衡器,App Server,Man-In-the-Middle攻击(MITM),端到端加密(E2EE)
The concepts of terminating or not terminating Secure Sockets Layer (SSL) at the load balancer have always generated intriguing conversations. In this paper, the author explains the pros and cons of such concepts in a simplistic manner and also provides suggested recommendations to help organizations understand the security implications associated with unencrypted traffic flowing from the Load Balancer to the App Servers. Keywords: Secure Sockets Layer (SSL), Load Balancer, App Server, Man-in-the-Middle Attack (MITM),End to End Encryption (E2EE)
