Man In the Middle Attack


(Rajeev Srikant) #1

Does Zscaler detect & prevent Man in the middle attack ?


(Scott Bullock) #2

Hi Rajeev,
Zscaler can do this, there’s a few methods to consider.

  1. from a TLS point of view, we look to ensue the certificate is singed, dated, verified and not revoked. Any MITM from an SSL/TLS perspective can be detected here

  2. scan all content, always, through Zscaler’s Sing Scan Multi Action engine. While not specific to MITM injection, if a connection to server is compromised with malicious payloads, we can detect and prevent, blocking or terminating a connection.

Hope that helps.

Cheers,

Scott-