Analysis Method Hyper Text Transfer Protocol Secure Packet Inspection in Intrusion Prevention Systems Device

Peneliti

Angga Friyanto, S.Kom., M.T.

Deskripsi/Abstrak

Analysis inspection method packet HTTPS or Hypertext Transfer Protocol Secure in Intrusion Prevention System (IPS) device is to explore the methods that IPS do in analyzing HTTPS Paket. Hypertext Transfer Protocol Secure or HTTPS is data communication between client and web server in essentially is end to end secure connection. In network security, Intrusion Prevention Systems (IPS) device function is inspection every packet enters and exits to internal network including packet secure connection. HTTPS packet and others secure connection packet are running packet in the network with didn't plain text, but all packet was encrypted from source. Packet encryption make IPS difficult to inspection packet and knowing what the content inside the packet. One of the methods IPS to inspection packet HTTPS is to decrypt and re- encrypt. This method makes two sections end to end secure connection. The first is secure connection between IPS and client use self-sign digital certificate. And the second is secure connection between IPS and web server use digital certificate from trust certificate authority (CA). So the method make HTTPS not end to end secure connection directly between client and web server in essentially HTTPS. However, the method succeeded in making IPS able to carry out inspections and find out the contents of the packet.