Internet - Secure sockets layer

  Internet

Definition
  • A protocol that protects data sent between Web browsers and web servers.
  • Ensures the data came from the web site it's supposed to have originated from
  • Ensures no one has tampered with the data while being sent.
  • Indicated with "https" web site protocol.

 How SSL enables secure connections
1. Request for SSL 2.Software handshake 3. Secure connection.

https://

  • User visits https web address.
  • User's browser & web site server start handshaking (negotiating).
  • A. Server presents its public key to the browser (certified by trusted authority such as Verisign). Browser validates Servers certificate.
  • B. Server tells browser the number of bits used to encrypt data.
    (128 recommended).
  • Data is exchanged via a secure pipe. A data integrity check ensures data is unchanged while being transmitted.
  • Data is unsecured once it reaches the browser.

Features

See also..
Definition 
  • Developed by Netscape communications.
  • Client portion built into the web browser.
  • Usually requires a user-id and password to access the site.
  • Enables secure connections for electronic commerce such as on-line banking.
  • Main purposes
    • Authenticate the server so users can be sure they're at the Web site they want to visit.
    • Creates a secure pipe and encrypts information that is sent between the browser and server.
  • b_ref.gif (1385 bytes) Sliwa, C. (1999, Jun 14)

[Rev: 15/03/00 ] 5/11/1999 © 1999-2000 V/2-Com (Verhaart), P O Box 8415, Havelock North, New Zealand.