SSL (Secure Socket Layer)
- disha shukla
- May 17, 2021
- 3 min read
Transport Layer Security, also known as SSL, is an encryption protocol designed to provide secure communications within an intranet or Web network. SSL is commonly used in web-pages and mails which are sent on the internet HTTPS. SSL (Secure Socket Layer) was developed by Doncker & Becker, Inc. in 1995 with the intent of standardizing the practice of transmitting secure communications over networks like the Internet. SSL was initially used to transmit data between PCs and servers; the idea was that instead of sending the data over an insecure bodily connection like a telephone line or a modem cable, the information would be protected by a digital sign.
Today SSL is used extensively in various areas of communications including email, web pages, and document communications. SSL works when coupled with different kinds of security measures such as encryption, authentication, and integrity. The most widely used type of SSL protocol is the SSLv3 that offers improved security and privacy for both users and servers. With SSLv3 a host doesn't have to authenticate itself if it receives a request for information. To earn SSLv3 more secure (for example because it adds security to the data before transmission), the protocol has been modified to utilize digitally signed files.
SSLv3 supports encryption through HTTP, SMTP, or ciphertext, and Internet browsers which support the online protocol can confirm that by prompt display of a padlock or lock symbol when a request is initiated over an unsecured network like the Internet or a Wi-Fi hotspot. This way a web server can ensure the request is simply sent to a IP address that it recognizes. Any other request which arrives through would not be approved by the web server. SSLv3 makes the Web much safer for data exchange especially when sending confidential information through the net.
SSLv3 is an encryption protocol which uses the Digital Signature algorithm. Encryption is done with the private key, which serves as a touch on the message. Once this is done, the message is sent across the network as a challenge, and the receiver will confirm the authenticity of the sender by means of a response message. This reaction could either be an HTTP code or challenge reply. The code will signal to the receiver whether or not she believes the message originated from the IP address indicated in the header or challenge section of the message.
SSLv3 message authentication can be broken down into three different methods, but all are part of a regular. One is named, digital certificates, also called digital signatures. This technique encrypts the message and the session key, making it impossible to decode the message when it reaches the recipient's computer 加密解密. Another is encryption. In this method, the transmitted message and the session key are enciphered or encrypted, which makes it impossible for everyone to decipher the message until it reaches its destination.
SSLv3 uses Transport Layer Security, also known as TCP, to provide security and authentication into the internet socket servers. This protocol was chosen due to its simplicity, permitting just small files to be sent over big distances. Since SSLv3 is backward compatible with SSLv2, an present SSLv2 server or client will work with an SSLv3 one. SSLv3 was created in close cooperation with other media protocols, and the most recent variant, SSLv4, offers better safety than any SSLv3 versions which come before. A SSLv4 handshake conveys the secret key that authenticates both the host and the receiver of data.
Comments