Mira ETO in the AWS Cloud

The Mira Security Cloud vETO provides safe and secure visibility into encrypted traffic within the public cloud, allowing tools used by enterprise security teams to function effectively. It seamlessly integrates with existing cloud security tools to protect their technical investments.

Mira’s vETO for the public cloud offers many advantages, including the ability to easily and quickly provision computing resources (eliminating the need for upfront investment in hardware and infrastructure), scale up or down as needed, and access a wide range of services and tools.

The Mira ETO automatically detects SSL, TLS, and SSH traffic, and can decrypt this traffic in order to send the unencrypted data to one or more security tools. The decrypted flows may be sent to security tools using tunnels. Decrypted data is sent to security tools with the same packet header details as the original encrypted flow encapsulated within the tunnel. Optionally, the decrypted flow can be marked allowing the tool to determine that the flow was originally encrypted.

No special interfaces or software changes are required to the security tools with ETO/vETO, thus allowing a plug-and-play instance without the responsibility of maintenance, security, or upgrades of underlying infrastructure.

How the Mira Cloud vETO Works on AWS

The Mira ETO is compatible with the AWS Gateway Load Balancer (GWLB), enabling easy deployment and automatic scaling within a centralized security architecture. The AWS GWLB allows for a resilient architecture across multiple AWS availability zones ensuring high availability within the cloud. Mira ETO, when paired with AWS GWLB, allows for TLS decryption of AWS VPC traffic, and can provide the decrypted traffic to existing IDS tools on AWS such as Suricata, Zeek, Corelight, Stamus, and Trellix NX.