Intelligent Decryption is designed to
bypass HTTPS decryption for application-based HTTPS traffic. You can use Intelligent
Decryption settings within an HTTPS decryption rule to better manage decryption of
application traffic over specific browsers.
 |
ImportantYou must enable Intelligent Decryption in the decryption rule for which you want
Intelligent Decryption functionality to apply.
|
Deep Discovery Web
Inspector includes
a list of built-in intelligent decryption patterns that correspond to a combination
of common browsers and operating systems. By default, traffic from all built-in
patterns are decrypted. You can change the status for any pattern from "Decrypt" to
"Do Not Decrypt" or you can rename the pattern.
You can detect and add custom patterns to the Defined Patterns list or
delete custom patterns when they are no longer needed.
 |
NoteFor traffic that matches an HTTPS decryption rule with Intelligent
Decryption enabled: All the patterns with status Decrypt are decrypted and subject to the configured Deep Discovery Web
Inspector policy rules
for subsequent inspection. All patterns with status Do Not
Decrypt are not decrypted.
|
The Intelligent Decryption screen is divided into two
sections:
-
Detect and Add Pattern: Where you can detect and add custom patterns to the defined intelligent decryption pattern list
-
Defined Patterns: Contains the list of built-in decryption patterns provided by Deep Discovery Web Inspector and custom patterns added by an administrator
Go to to perform the following:
Procedure
- Detect a custom pattern and add a custom pattern to the Defined Patterns list.
- View the Defined Patterns list.
- Configure what action to take for traffic that matches a selected pattern:
Decrypt or Do Not
Decrypt.The default is Decrypt.
- Select a pattern and edit the pattern name.
- Select a custom pattern and click Delete if the pattern
is no longer needed.You cannot delete built-in patterns.