Author Topic: Is it possible for avast! to scan SSL traffic?  (Read 17792 times)

0 Members and 1 Guest are viewing this topic.

Offline Ashish Singh

  • Poster
  • *
  • Posts: 437
  • Proud to be an Indian
    • Quick Heal
Is it possible for avast! to scan SSL traffic?
« on: May 22, 2011, 12:54:00 PM »
Hi I want your opinion on this..

I want that avast would install a certificate for the browser so that it could scan SSL traffic also which now it can't. I saw this is done by eset,Bitdefender,Kaspersky to scan secure traffic and every SSL connection is shown verified by the AV, one using.( I mean like browser would say for gmail that connected to gmail.com verified by Kaspersky Lab/Eset spol s.r.o/Bitdefender) Also see screenshot.

I want  every Secure website the browser would say connected to facebook.com verified by AVAST Software a.s
How is the suggestion?

In this way we will have SSl connection as well as avast protection also...

If i am wrong please correct me...
« Last Edit: May 22, 2011, 12:56:47 PM by Ashish Singh »
Windows 7 Ultimate(32 bit), avast! free (always latest released or beta), Intel Core2Duo, 2GB RAM, Outpost Firewall Pro 7.5,IE 9,TuneUp Utilities 2011,Diskeeper 2011

http://www.incredibleindia.org 

Caution! Online world is full of man made Aliens

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 76115
  • Urlaub/Vacation
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
Re: Is it possible for avast! to scan SSL traffic?
« Reply #1 on: May 22, 2011, 01:31:48 PM »
If i am wrong please correct me...

Ok, I correct you. ;)
No secure connection can be scanned, otherwise it wouldn't be a secure connection.
W8.1 [x64] - Avast PremSec 22.7.7366.BC [UI.713] - Firefox ESR 91.11 [NS/uBO/PB] - Thunderbird 91.11
Avast-Tools: Secure Browser 103.0 - Cleanup 22.2 - SecureLine 5.18 - DriverUpdater 22.2 - CCleaner 6.01
Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37161
  • Not a avast user
Re: Is it possible for avast! to scan SSL traffic?
« Reply #2 on: May 22, 2011, 02:13:14 PM »
Quote
Also see screenshot.
The screenshot only show that Bitdefender is verifieing that you are connected using SSL...it is not scanning it

as Asyn say, if it did it would not be secure

Offline Ashish Singh

  • Poster
  • *
  • Posts: 437
  • Proud to be an Indian
    • Quick Heal
Re: Is it possible for avast! to scan SSL traffic?
« Reply #3 on: May 22, 2011, 03:03:42 PM »
Can someone explain me the screenshot then.. ...?

Windows 7 Ultimate(32 bit), avast! free (always latest released or beta), Intel Core2Duo, 2GB RAM, Outpost Firewall Pro 7.5,IE 9,TuneUp Utilities 2011,Diskeeper 2011

http://www.incredibleindia.org 

Caution! Online world is full of man made Aliens

Offline Ashish Singh

  • Poster
  • *
  • Posts: 437
  • Proud to be an Indian
    • Quick Heal
Re: Is it possible for avast! to scan SSL traffic?
« Reply #4 on: May 22, 2011, 03:22:26 PM »
I don't use bit defender otherwise I have posted its log also that it scans SSL traffic also...
Same for Kaspersky Also...It also has the option. If does not scan then I don't understand that why they have given the option
Windows 7 Ultimate(32 bit), avast! free (always latest released or beta), Intel Core2Duo, 2GB RAM, Outpost Firewall Pro 7.5,IE 9,TuneUp Utilities 2011,Diskeeper 2011

http://www.incredibleindia.org 

Caution! Online world is full of man made Aliens

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37161
  • Not a avast user
Re: Is it possible for avast! to scan SSL traffic?
« Reply #5 on: May 22, 2011, 03:36:35 PM »
Does ESET Smart Security scan SSL (Secure Sockets Layer) traffic?

Quote
By default, ESET Smart Security checks the POP3 protocol on TCP port 110 and the HTTP protocol on TCP ports 80, 8080 and 3128 for threats to your system.

Since all SSL communications are encrypted it is not possible for ESET Smart Security to scan them, even if the TCP port is listed above and has been manually entered.

Quote
ESET Smart Security is unable to check encrypted traffic (SSL, HTTPS, S/POP3, SSH and so forth). After encrypted traffic has been decrypted, it will be checked for threats by the antivirus components of NOD32. If you are not using a standard port for email, it is scanned by the antivirus component as soon as the mail touches the system, which will protect you from any threats.

Offline Ashish Singh

  • Poster
  • *
  • Posts: 437
  • Proud to be an Indian
    • Quick Heal
Re: Is it possible for avast! to scan SSL traffic?
« Reply #6 on: May 22, 2011, 03:42:15 PM »
I am confused. I just posted a  HTTPS scanned page

What about this screenshot........?
« Last Edit: May 22, 2011, 03:51:06 PM by Ashish Singh »
Windows 7 Ultimate(32 bit), avast! free (always latest released or beta), Intel Core2Duo, 2GB RAM, Outpost Firewall Pro 7.5,IE 9,TuneUp Utilities 2011,Diskeeper 2011

http://www.incredibleindia.org 

Caution! Online world is full of man made Aliens

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37161
  • Not a avast user
Re: Is it possible for avast! to scan SSL traffic?
« Reply #7 on: May 22, 2011, 03:58:30 PM »
The above posted is from ESET FAQ...

so why dont you send them a mail and ask how it works ?  and tell us what they say




Offline Ashish Singh

  • Poster
  • *
  • Posts: 437
  • Proud to be an Indian
    • Quick Heal
Re: Is it possible for avast! to scan SSL traffic?
« Reply #8 on: May 22, 2011, 04:03:21 PM »
The above posted is from ESET FAQ...

so why dont you send them a mail and ask how it works ?  and tell us what they say





i already did...
Windows 7 Ultimate(32 bit), avast! free (always latest released or beta), Intel Core2Duo, 2GB RAM, Outpost Firewall Pro 7.5,IE 9,TuneUp Utilities 2011,Diskeeper 2011

http://www.incredibleindia.org 

Caution! Online world is full of man made Aliens

Offline DavidR

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 87071
  • No support PMs thanks
Re: Is it possible for avast! to scan SSL traffic?
« Reply #9 on: May 22, 2011, 04:15:19 PM »
Looks like they are playing fast and loose with the actual facts, they aren't actually decrypting and scanning the 'content' of http traffic; that would require huge processing power and your browsing in https sites would grind to a halt. Seems nothing more than marketing hype.

So what it is showing in the image scan stats is somewhat misleading, whilst may be possible to scan that raw encrypted https traffic coming 'in to' your system; it is going to achieve very little as it is encrypted. Until that https traffic is decrypted in your system could any meaningful scan be done.
Windows 10 Home 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 22.10.6038 (build 22.10.7633.734) UI 1.0.733/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro/ Avast! Mobile Security

sded

  • Guest
Re: Is it possible for avast! to scan SSL traffic?
« Reply #10 on: May 22, 2011, 04:25:51 PM »
Looks like the Bit Defender writeups say they have developed Browser Plugins that allow them to scan the decrypted (by the browser) https data streams as the page is being assembled, but ???.  Remember that a web page is actually a mosaic of html data assembled into a web page, and in the case of an https page the data must be decrypted first to form the viewable page.
Don't know what the others do, but building a proxy that replicates the browser security functions on port 443 using something like openSSL for all the browsers seems much more cumbersome.
Maybe Avast! will have a comment?
« Last Edit: May 22, 2011, 10:52:47 PM by sded »

Offline Ashish Singh

  • Poster
  • *
  • Posts: 437
  • Proud to be an Indian
    • Quick Heal
Re: Is it possible for avast! to scan SSL traffic?
« Reply #11 on: May 22, 2011, 06:26:24 PM »
I think this might help you people....

First one without installing Bitdefender traffic light

Second one after installing traffic light

Note: I have opened the same page
Windows 7 Ultimate(32 bit), avast! free (always latest released or beta), Intel Core2Duo, 2GB RAM, Outpost Firewall Pro 7.5,IE 9,TuneUp Utilities 2011,Diskeeper 2011

http://www.incredibleindia.org 

Caution! Online world is full of man made Aliens

Offline Ashish Singh

  • Poster
  • *
  • Posts: 437
  • Proud to be an Indian
    • Quick Heal
Re: Is it possible for avast! to scan SSL traffic?
« Reply #12 on: May 22, 2011, 06:31:15 PM »
Also this,......
This is not only with Bitdefender its also with Kaspersky and ESET

A bit confusing... What could be the purpose of doing this and stating that it can scan SSL connection in all the three AV.
Windows 7 Ultimate(32 bit), avast! free (always latest released or beta), Intel Core2Duo, 2GB RAM, Outpost Firewall Pro 7.5,IE 9,TuneUp Utilities 2011,Diskeeper 2011

http://www.incredibleindia.org 

Caution! Online world is full of man made Aliens

Offline DavidR

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 87071
  • No support PMs thanks
Re: Is it possible for avast! to scan SSL traffic?
« Reply #13 on: May 22, 2011, 07:20:09 PM »
Marketing hype to sell products.

It isn't actually scanning just confirming that your connection is HTTPS with a valid certificate, something that you can have your browser do if you change the settings.
Windows 10 Home 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 22.10.6038 (build 22.10.7633.734) UI 1.0.733/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro/ Avast! Mobile Security

Offline Lisandro

  • Avast team
  • Certainly Bot
  • *
  • Posts: 67235
Re: Is it possible for avast! to scan SSL traffic?
« Reply #14 on: May 22, 2011, 08:20:43 PM »
Marketing hype to sell products.
Thanks David. You're fully right. I hate hyping when the user is just fool with bla-bla-bla and promises.
BitDefender is on my blacklist in this point.
The best things in life are free.