1
There is software installed on all client machines for DLP (Data Loss Prevention) and HIPAA compliance. Supposedly it can read HTTPS data clearly. I always thought that between the browser and the server, this was encrypted entirely. How can software sneak in and grab this data from the browser prior to it is encrypted or after it is decrypted? I am just curious as to how this could be possible. I would think that a browser wouldn't be considered very secure if this was possible.
2You probably know this already but the browser is only as secure as the machine it runs on. If I have unfettered access to a PC then there are numerous ways to monitor (all) activity on the machine. – BJ292 – 2012-06-18T20:09:28.870