PUBLICATION & RESEARCH LIBRARY

Authors: Jason Pappalexis, John Whetstone, Mike Spanbauer and Will Fisher

Publish Date: September 6, 2017

Web encryption has become a minimum requirement in digital business transactions. Today, more than 59% of all websites are encrypted and so is approximately half of all enterprise traffic. However, server-side vulnerabilities and browser-side vulnerabilities are common paths for threat actors to obtain root-level access, and these vulnerabilities can be accessed regardless of whether or not they are encrypted.

Enterprises that wish to make changes to their security architectures will often rely on insight from their peers. This brief presents results from NSS Labs’ 2017 Enterprise Security Architecture Study, which included survey responses from 510 information security professionals representing 50 US industries.

ABOUT THIS STUDY: Part of a series on security controls deployed by US enterprises, this brief includes current usage statistics for SSL/TLS appliances within small and medium-sized enterprises (SMEs), large enterprises (LEs), and very large enterprises (VLEs).