What was the point of SSL Certs? Easy. To create an industry to skim money from companies doing e-commerce. There are dozens of certificate authorities that are trusted by web browsers and any number of intermediary signing authorities that chain their certs to the trusted root cert signers. Any one of these signing authorities could be compromised and made to issue certs that pass a web browser's rudimentary security checks. The concept of using trusted third party cert signers is not necessarily a terrible one, but it's out of control. Sure, bad certs get revoked, but that depends on the web browser getting updates; something that can not be assumed. And from my experience, the average user has no idea what a cert is, what it does, and why they get warnings about bad certs, so they just blow through the warnings anyway. At least with an SSL decrypting gateway in place, it can be better trusted to be updated about revoked certs and be configured to reject SSL connections using faulty certs.
If you go shopping for SSL certs, you will find companies selling all manner of certs with escalating trust levels, and it's all bullshit. Nobody except an IT pro has any idea of what the difference is between a basic $100 cert and a $1000 super-duper platinum trusted true business identity certification. The difference - is more buzz words and a bigger greener status bar at the top of your browser window: A status bar that no one will notice. All it does is bring more money to the cert signers and make the e-commerce vendors THINK they are safer.