Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Software
Security Apps
Avast
How does Avast Https scanning works?
Message
<blockquote data-quote="Bot" data-source="post: 1068646" data-attributes="member: 52014"><p>Yes, Avast utilizes a different mechanism for HTTPS scanning compared to traditional root certificate-based approaches. Instead of intercepting and decrypting the HTTPS traffic using a root certificate, Avast uses a technology called "TLS/SSL scanning" or "HTTPS scanning" to inspect the encrypted traffic without breaking the encryption.</p><p></p><p>Here's a technical overview of how Avast's HTTPS scanning works:</p><p></p><p>1. When you access a website using HTTPS, your browser initiates a secure connection with the web server. The server responds by sending its SSL/TLS certificate to your browser.</p><p></p><p>2. Avast intercepts this certificate and creates a new one on the fly, signed by Avast's own root certificate. This is known as a "man-in-the-middle" (MITM) technique.</p><p></p><p>3. Avast's root certificate is already installed on your computer as part of the Avast antivirus software. This allows Avast to generate a new certificate that appears valid to your browser.</p><p></p><p>4. Avast establishes a separate secure connection with the web server on your behalf, using the original certificate from the server.</p><p></p><p>5. Avast acts as a proxy between your browser and the web server. It decrypts the HTTPS traffic coming from the server using the original certificate, inspects the contents, and then re-encrypts it using Avast's own certificate.</p><p></p><p>6. The re-encrypted traffic is then sent back to your browser, which decrypts it using Avast's root certificate, making it appear as if the secure connection is established directly with the web server.</p><p></p><p>7. Avast scans the decrypted content for any potential threats, such as malware or phishing attempts. If a threat is detected, Avast can block the connection and notify you.</p><p></p><p>It's important to note that Avast's HTTPS scanning is designed to enhance your security by inspecting the encrypted traffic for potential threats. However, some users may have concerns about the privacy implications of this method, as it involves intercepting and decrypting the HTTPS traffic. Avast has implemented measures to protect user privacy, such as anonymizing the data and using secure connections for communication between the Avast software and its servers.</p><p></p><p>Overall, Avast's HTTPS scanning provides an additional layer of security by inspecting encrypted traffic without relying on root certificates.</p></blockquote><p></p>
[QUOTE="Bot, post: 1068646, member: 52014"] Yes, Avast utilizes a different mechanism for HTTPS scanning compared to traditional root certificate-based approaches. Instead of intercepting and decrypting the HTTPS traffic using a root certificate, Avast uses a technology called "TLS/SSL scanning" or "HTTPS scanning" to inspect the encrypted traffic without breaking the encryption. Here's a technical overview of how Avast's HTTPS scanning works: 1. When you access a website using HTTPS, your browser initiates a secure connection with the web server. The server responds by sending its SSL/TLS certificate to your browser. 2. Avast intercepts this certificate and creates a new one on the fly, signed by Avast's own root certificate. This is known as a "man-in-the-middle" (MITM) technique. 3. Avast's root certificate is already installed on your computer as part of the Avast antivirus software. This allows Avast to generate a new certificate that appears valid to your browser. 4. Avast establishes a separate secure connection with the web server on your behalf, using the original certificate from the server. 5. Avast acts as a proxy between your browser and the web server. It decrypts the HTTPS traffic coming from the server using the original certificate, inspects the contents, and then re-encrypts it using Avast's own certificate. 6. The re-encrypted traffic is then sent back to your browser, which decrypts it using Avast's root certificate, making it appear as if the secure connection is established directly with the web server. 7. Avast scans the decrypted content for any potential threats, such as malware or phishing attempts. If a threat is detected, Avast can block the connection and notify you. It's important to note that Avast's HTTPS scanning is designed to enhance your security by inspecting the encrypted traffic for potential threats. However, some users may have concerns about the privacy implications of this method, as it involves intercepting and decrypting the HTTPS traffic. Avast has implemented measures to protect user privacy, such as anonymizing the data and using secure connections for communication between the Avast software and its servers. Overall, Avast's HTTPS scanning provides an additional layer of security by inspecting encrypted traffic without relying on root certificates. [/QUOTE]
Insert quotes…
Verification
Post reply
Top