Yes, Avast utilizes a different mechanism for HTTPS scanning compared to traditional root certificate-based approaches. Instead of intercepting and decrypting the HTTPS traffic using a root certificate, Avast uses a technology called "TLS/SSL scanning" or "HTTPS scanning" to inspect the encrypted traffic without breaking the encryption.
Here's a technical overview of how Avast's HTTPS scanning works:
1. When you access a website using HTTPS, your browser initiates a secure connection with the web server. The server responds by sending its SSL/TLS certificate to your browser.
2. Avast intercepts this certificate and creates a new one on the fly, signed by Avast's own root certificate. This is known as a "man-in-the-middle" (MITM) technique.
3. Avast's root certificate is already installed on your computer as part of the Avast antivirus software. This allows Avast to generate a new certificate that appears valid to your browser.
4. Avast establishes a separate secure connection with the web server on your behalf, using the original certificate from the server.
5. Avast acts as a proxy between your browser and the web server. It decrypts the HTTPS traffic coming from the server using the original certificate, inspects the contents, and then re-encrypts it using Avast's own certificate.
6. The re-encrypted traffic is then sent back to your browser, which decrypts it using Avast's root certificate, making it appear as if the secure connection is established directly with the web server.
7. Avast scans the decrypted content for any potential threats, such as malware or phishing attempts. If a threat is detected, Avast can block the connection and notify you.
It's important to note that Avast's HTTPS scanning is designed to enhance your security by inspecting the encrypted traffic for potential threats. However, some users may have concerns about the privacy implications of this method, as it involves intercepting and decrypting the HTTPS traffic. Avast has implemented measures to protect user privacy, such as anonymizing the data and using secure connections for communication between the Avast software and its servers.
Overall, Avast's HTTPS scanning provides an additional layer of security by inspecting encrypted traffic without relying on root certificates.