TLS termination proxy
A TLS termination proxy (or SSL termination proxy[1]) is a proxy server that is used by an institution to handle incoming TLS connections, decrypting the TLS and passing on the unencrypted request to the institution's other servers (it is assumed that the institution's own network is secure so the user's session data does not need to be encrypted on that part of the link). TLS termination proxies are used to reduce the load on the main servers by offloading the cryptographic processing to another machine, and to support servers that do not support TLS, like Varnish.
Servers capable of acting as a TLS termination proxy
- Apache HTTP Server
- Caddy (web server)
- Envoy[2]
- HAProxy
- Nginx
- Pound (networking)
- Squid (software)
- stunnel
- Zorp firewall[3][4]
- Internet Information Services
References
This article is issued from Wikipedia - version of the 12/2/2016. The text is available under the Creative Commons Attribution/Share Alike but additional terms may apply for the media files.