Can gatelets support encrypted messaging apps?
search cancel

Can gatelets support encrypted messaging apps?

book

Article ID: 251893

calendar_today

Updated On:

Products

Cloud Access Security Broker for IaaS CASB Advanced Threat Protection CASB Audit CASB Gateway CASB Gateway Advanced CASB Security Advanced CASB Security Advanced IAAS CASB Security Premium CASB Security Premium IAAS CASB Security Standard CASB Securlet IAAS CASB Securlet SAAS CASB Securlet SAAS With DLP-CDS

Issue/Introduction

Can a custom gatelet protect data for application proprietary encrypted messaging apps or Apps that use certificate pining such as Viber, Telegram or Signal?

Resolution

A custom gatelet is unable to provide protection when the data cannot be decrypted by the cloud security gateway. The encryption happens before WSS\CASB has the opportunity to inspect the data or the data is not allow to be decrypted.

These apps would either need to be bypassed and sent directly to the vendor (No protection) or, blocked at the firewall or proxy.

Powered by Wolken Software