A New Approach That Restores Complete Decrypted Visibility

Nubeva's Session Key Intercept is a breakthrough new approach to modern decryption.  Our software-based solution is an alternative or augmentation to legacy man-in-the-middle, proxy termination, and passive key regeneration for modern environments. Decryption does not need to be so hard. 

Nubeva empowers visibility on both ends of the decryption process - key extraction and symmetric decryption - filling in security and application monitoring services gaps. 

  1. Session Key Extraction: Nubeva is the only solution on the market to discover and extract symmetric encryption keys for TLS 1.3, TLS 1.2 with Perfect Forward Secrecy, pinned certificates, and legacy protocols. Our FastKey technology securely sends the session-specific key to any destination at line-rate speed for pure-symmetric decryption. 

  2. Symmetric Decryption: Nubeva offers a high-performance decryption amenity to solve modern TLS decryption for security and application monitoring systems.  Nubeva reinstates high-speed, low latency symmetric decryption for application and security monitoring systems. 

Product Overview



Talk to Experts Get Started


Empower Your Systems and Tools

Session Key Intercept

Easy-to-Use Session Key Intercept Simplifies Decryption and Enhances Visibility






Session Key Discovery - TLS hello triggers Nubeva’s advanced, signature-based hunt rules. These key signatures let Nubeva’s read-only sensor quickly discover each session’s symmetric encryption key.


Session Key Delivery - Symmetric encryption session secrets are encrypted and securely sent – over your own network – to a decryption destination or storage. The session keys are never sent with the session traffic, decoupling and creating additional protection.


Pure, Symmetric Decryption: With the symmetric encryption keys already at your disposal, there is no need for old, slow and costly decryption mechanisms like MITM, handshake replay or early TLS termination. Decryptors receive the symmetric keys and can perform bulk decryption at line rate.

Universal Software Solution Fit To Your Need

Nubeva Products

SKI Discovery Sensors
Automatically Learn and Extract
All Symmetric Keys
Nubeva read-only key discovery sensors capture TLS Symmetric Keys, independent of protocol or cipher, from servers or clients in real-time during the TLS handshake, without changing systems or altering memory.
FastKey Technology
High Speed, Secure
Key Delivery
High-speed distribution of symmetric keys sends via DTLS to decryption systems. This decouples symmetric key management from decryption and enables massively parallel decryption, inspection, and detection capabilities.
SKI Decryptor Container
Save Money
See More Traffic
The decryption of tapped, mirrored or PCAP traffic can happen wherever it’s needed. Nubeva delivers final encryption keys to the Nubeva containerized symmetric decryptor that can be deployed as a decryption utility.
SKI Decryption Library
Embed Decryption
into Your Monitoring System
Nubeva's decryption library seamlessly plugs into existing tools. Allow your customers to see more, improve price performance, and simplify operations with terabit-per-second decryption and breakthrough economics.
Update Your Security and Monitoring Systems

Use Cases


Restore and Expand

Passive Systems

Nubeva restores visibility to out-of-band detection and inspection solutions. There is no need to be in the middle of a session. Instead, Symmetric Key Intercept discovers and delivers the final, symmetric encryption keys from the host to the passive tool enabling it to see all traffic including TLS 1.3, PFS and pinned certificates.


Enhance and Boost

Inline Systems

Nubeva augments and enhances inline systems by delivering the final symmetric encryption keys from the host to the inline system before the first packet even arrives. Inspect traffic you previously had to bypass. Restore peak performance of inline tools by eliminating the need for handshake replays and old decryption processes.


Create and Enable

New Visibility

Nubeva creates visibility where none existed before and enables security tools and teams to see into areas they’ve never seen before. Nubeva discovers symmetric encryption keys from Kubernetes and containers, Intra-zone/VPC, high-speed connections, and Cloud and 3rd party API calls/connections.

Why Nubeva? 

Key Benefits

Reduce Cost

Get decrypted visibility and eliminate legacy performance costs. Use existing tools to inspect and monitor all traffic at line speed.

Protect Investment

Extend the ROI of your existing solutions. Enable pure, fast symmetric decryption with Nubeva and continue to use the tools, teams and processes in place.

Future Proof Visibility

Regardless of encryption protocol or cipher suite,  the confidentiality of traffic and integrity of the session is preserved while legitimate availability is allowed and protected.

Ready to Reimagine TLS Visibility? 

Schedule a quick technical briefing today and discover how we can unlock visibility for your systems and customers. 

Let's Chat