Redirected from Secure Sockets Layer
These protocols provide communications privacy over the Internet, using cryptography. They allow client/server applications to communicate in a way that is designed to prevent eavesdropping[?], tampering[?], or message forgery[?].
They are layered beneath application protocols such as HTTP, SMTP and NNTP and above the TCP transport protocol, part of the TCP-IP protocol suite. While both SSL and TLS can be used to add security to any protocol that uses TCP, they is most commonly used in the HTTPS access method. HTTPS is used to secure World Wide Web pages for applications such as Electronic commerce. Both protocols use public key cryptography and public key certificates to identify the identity of endpoints.
Like SSL, on which is was based, TLS is a modular protocol, designed to be extended, with support for forwards and backwards compatibility and negotiation between peers.
Both TLS and SSL involve a number of basic phases:
Some early versions of SSL used 40-bit symmetric keys because of restrictions on the export of cryptographic technology[?]. These were quickly abandoned as insecure: the 40-bit key space was simply too small, and could be exhausted by brute force search. Modern implementations use 128-bit keys for symmetric cipher encryption.
TLS has subsequently been extended by other RFCs including:
While an increasing number of client and server products can support TLS or SSL natively, there are many that still do not. In these cases, you may wish to use standalone SSL products like Stunnel to provide SSL encryption.
Search Encyclopedia
|
Featured Article
|