TLS termination proxy

A TLS termination proxy (or SSL termination proxy[1]) is a proxy server that is used by an institution to handle incoming TLS connections, decrypting the TLS and passing on the unencrypted request to the institution's other servers (it is assumed that the institution's own network is secure so the user's session data does not need to be encrypted on that part of the link). TLS termination proxies are used to reduce the load on the main servers by offloading the cryptographic processing to another machine, and to support servers that do not support TLS, like Varnish.

Servers capabable of acting as a TLS termination proxy

Wikipedia uses Nginx as its TLS termination proxy.[2]

References

  1. SSL Termination, F5 Networks.
  2. "SSL termination (HTTPS)". wikitech.wikimedia.org. 3 October 2011. Retrieved 3 December 2011.
This article is issued from Wikipedia - version of the Tuesday, December 22, 2015. The text is available under the Creative Commons Attribution/Share Alike but additional terms may apply for the media files.