To Terminate or Not to Terminate Secure Sockets Layer (SSL) Traffic at   the Load Balancer

Pierre Boisrond

arXiv:2011.09621·cs.NI·November 20, 2020

To Terminate or Not to Terminate Secure Sockets Layer (SSL) Traffic at the Load Balancer

Pierre Boisrond

PDF

Open Access

TL;DR

This paper discusses the security and operational trade-offs of terminating or not terminating SSL at load balancers, providing insights and recommendations for organizations managing encrypted traffic.

Contribution

It offers a clear analysis of SSL termination options at load balancers, highlighting security implications and practical recommendations for organizations.

Findings

01

SSL termination impacts security and performance

02

Unencrypted traffic from load balancer to app servers poses security risks

03

Recommendations for secure SSL management at load balancers

Abstract

The concepts of terminating or not terminating Secure Sockets Layer (SSL) at the load balancer have always generated intriguing conversations. In this paper, the author explains the pros and cons of such concepts in a simplistic manner and also provides suggested recommendations to help organizations understand the security implications associated with unencrypted traffic flowing from the Load Balancer to the App Servers. Keywords: Secure Sockets Layer (SSL), Load Balancer, App Server, Man-in-the-Middle Attack (MITM),End to End Encryption (E2EE)

Peer Reviews

No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.

Videos

No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.

Taxonomy

TopicsInternet Traffic Analysis and Secure E-voting