@lpopejoy for IPS/IDS, you don't necessarily need SSL decryption; otherwise, it would be useless a long time ago. Primarily, it's based on the signatures (traffic flow behaviour/pattern/fingerprinting) that exploit uses. Once it's detected/identified, a signature is created and pushed to the device IPS/IDS database.
... View more
