Secure Sockets Layer And Transport Layer Security Computer Science Essay

Published: Last Edited:

This essay has been submitted by a student. This is not an example of the work written by our professional essay writers.

With the nature of the data being collected by our site, security is of paramount importance. We decide that you need to use SSL to secure your website in order to keep the information secure and reassure your customers that our take their security seriously.

With the nature of the data being collected by our site, security is of paramount importance. I need to use SSL/TLS to secure your website in order to keep the information secure and reassure my customers that you take their security seriously.

Secure Sockets Layer (SSL) and Transport Layer Security (TLS) provide secure encryption protocol for communications networks, such as the Internet. SSL and TSL encrypted network connections section of the application layer, end to end to ensure the safety of transit at the transport layer. Several versions of the protocol widely used in applications such as Web browsing, e-mail, Internet fax, messaging and voice-over-IP (VoIP).

The Secure Sockets Layer (SSL) is a commonly-used protocol for managing the security of a message transmission on the Internet. SSL has recently been succeeded by Transport Layer Security (TLS), which is based on SSL. SSL uses a program layer located between the Internet Hypertext Transfer Protocol (HTTP) and Transport Control Protocol (TCP) layers. SSL is included as part of both the Microsoft and Netscape browsers and most Web server products. Developed by Netscape, SSL also gained the support of Microsoft and other Internet client/server developers as well and became the standard until evolving into Transport Layer Security. The sockets quota; part of the term refers to the sockets method of passing data back and forth between a client and a server program in a network or between program layers in the same computer. SSL uses the public-and-private key encryption system from RSA, which also includes the use of a digital certificate.

Transport layer Security (TLS) is a protocol to ensure privacy and data integrity between client / server applications to communicate through the Internet. TLS provides endpoint authentication and communications privacy over the Internet using encryption. When the server and client communicate, TLS to ensure that no third party can eavesdrop or tamper with any message. TLS is the Secure Sockets Layer (SSL) successor.


TLS is composed of two layers: TLS Record Protocol and the TLS Handshake Protocol. TLS Record Protocol provides some, such as Data Encryption Standard (DES) encryption security of the connection. TLS Record Protocol can also be used without encryption. TLS Handshake Protocol allows the server and client authenticate each other and negotiate an encryption algorithm and encryption key data before the exchange.

TLS protocol is based on Netscape's SSL 3.0 protocol; however, TLS and SSL are not interoperable. TLS protocol does contain a mechanism that allows TLS to achieve back to SSL 3.0. The latest browser versions support TLS. TLS Working Group, established in 1996 to continue work on the TLS protocol and related applications.

Both the Web servers and Web browsers rely on SSL protocol to create a unique encrypted channel private communication over the public Internet. Each SSL Certificate contains two of key: a public key and a private key. The Public key used to encrypt the information and the private key used decrypt the encrypted information. When the Web browser to a secure domain, a level encryption is established that based on the SSL certificate as well as the client Web browser, operating system and the ability of the host server. As the use of the SSL become wider, some types of SSL certificate have emerged: Extended Validation (EV) SSL Certificates and Domain Validation (DV) SSL Certificates.

Extended Validation (EV) SSL certificates are a new type of SSL certificate, which aims to provide users with more confidence, which you are, you control or own your site. EV SSL certificates provide high security for the web browsers information to clearly identify the site of tissue identity. In the network development, to identify the EV SSL certificate's browser is considered to be high-security browser. Their aim is to trigger unique visual cues to indicate the presence of EV SSL certificates.

As people use e-commerce, business and social activities of the network, they would share their personal and confidential information. High-profile fraud and phishing scams can make the users concerned about the incidents of identity their issues. Before they enter sensitive data, they want to prove that the site is to believe that their information will be encrypted. Without it, they may abandon their shopping cart or other transaction, and other places to do business. High security web browsers and EV SSL Certificates provide third-party and the visual display, so that consumer confidence and build trust in online business validation.


Domain Validation (DV) SSL Certificates are server security certificate that provide a minimum level of validation can be from a commercial certification authority.

How it work? When the user completes the SSL enrollment process, you will receive an e-mail address of your choice and with SSL to verify domain ownership verification email links. You only need to open the link and verify that "I agree" and your order will be successfully validated and SSL will soon be issued. This makes the issue of domain validation SSL fastest, because it requires several minutes to complete the entire process. Domain Validation SSL is the most suitable who need SSL, and want the immediate and safe and normal forms of web site shopping cart.

DV SSL certificate also provide encryption and high reliability, because they have a standard CA RapidSSL, GeoTrust's, Thawte issued. Domain Validation SSL information in the SSL domain name only. SSL equipment you want to display your business name and location, the proposed installation business validation SSL certificates.

Before a DV SSL certificate can be issued, the issuing certification authority to verify the contacts in the field of the certificate of approval request. This approval is usually by e-mail, but can also be by telephone or through other methods. That is because the DV SSL certificate issuance usually can be automated, The DV SSL certificates price is usually higher than the guarantee or EV SSL certificate, requires a human factor in the certificate issuance process, and other organizations to provide the low level of the verification process.

Although the DV SSL certificate owner's consent, they made no attempt to verify who the owner of this domain is very important. The authentication domain in which to make this an ideal choice for a certificate that a man fishing and middle attack.