Halo Dōgen is a passive, in-stream, on-site inspection appliance that introduces intelligent network visibility — without altering IP schemes, VLANs, routing, or existing firewalls.
It provides behavioural analytics, intelligent threat filtering, and real-time visibility while remaining fully POPIA-aligned and non-intrusive.
Who Was Dōgen?
Halo Dōgen takes its name from Zen Master Eihei Dōgen, the 13th-century teacher who championed clarity, discipline, and removing unnecessary complexity. His philosophy was simple: focus on what matters, eliminate what doesn’t.
This is the same principle behind our Dōgen security layer — clear, ethical, non-intrusive visibility and risk insight that gives you options to strengthen your network without redesign or disruption.
Where Dōgen Fits In
Halo Dōgen is deployed inline in front of your firewall, enhancing security and visibility instantly — without redesigning your network, changing your IP structure, modifying existing configurations, or causing any performance degradation.
Your network → Dōgen → Your firewall → Internet. (In front of your firewall, inline, bridge mode)
No IP changes. No VLAN rework. No downtime.
Why Customers Need It
✔ Firewalls alone are no longer enough
Modern threats hide in encrypted and cloud-based traffic. Firewalls cannot classify this on their own.
Dōgen fills the gap with behaviour- and metadata-based intelligence.
✔ BYOD makes traditional security impossible
You cannot control or install agents on personal devices — nor should you under POPIA.
Dōgen protects without touching user devices.
✔ Real-world networks are messy
Businesses inherit mixed switch brands, DIY Wi-Fi, inconsistent VLANs, and legacy routers.
Dōgen works instantly on top of whatever is already there.
✔ SSL decryption is becoming legally risky and technically fragile
POPIA, certificate pinning, encrypted DNS, and ECH make MITM inspection unreliable and intrusive.
Dōgen avoids decryption entirely — privacy is preserved.
✔ Organisations need visibility without violating privacy
Boards, compliance teams, and IT managers need meaningful security insight — without accessing user content or personal data.
Dōgen uses advanced machine-learning models and AI-driven metadata classifiers to identify risky behaviour, anomalous connections, and emerging threats — all without decrypting traffic or inspecting payloads.
Here are typical examples of real-world risks Dōgen identifies that firewalls fail to block:
Powered by Zenarmor Inside
Dōgen is built on Zenarmor TLS-Light, a privacy-aligned inspection engine that analyses encrypted traffic without decrypting it.
It provides intelligent classification, behaviour awareness, and real-time threat insight — all without touching payloads or breaking encryption.
Dōgen includes:
-
A dedicated inline hardware appliance, purpose-built for transparent bridging, high throughput, and zero performance impact.
-
Threat and risk classification (metadata-driven)
-
Category-based content control
-
Application & service identification (L7 visibility without decryption)
-
Zero-trust DNS / URL classification
-
6th-generation ML and AI behavioural analysis
-
Cloud-assisted intelligence with local enforcement
And intentionally excludes:
-
Payload inspection
-
SSL/TLS decryption
-
MITM proxying
-
Certificate pinning bypasses
-
Endpoint agents
-
Device posturing
This keeps Dōgen POPIA-aligned, BYOD-friendly, and fully respectful of Digital Dignity.
For security governance teams and architects requiring deeper insight:
Download the Dōgen Executive Brief (PDF)
Request a Technical Briefing
If you would like to see Dōgen operating in a live environment or discuss architectural fit within your organisation, contact us to arrange a briefing or trial appliance.