ie8 fix
madison
Home / Topics

ssl

42 Results

Related Tags

Dictionary

SSL

(1) (Solid State Lighting) See LED lighting. (2) (Secure Sockets Layer) The leading security protocol on the Internet. Developed by Netscape, SSL is widely used to do two things: to validate...

Full Definition »
Dictionary

Definition: SSL

(1) (Solid State Lighting) See LED lighting.

(2) (Secure Sockets Layer) The leading security protocol on the Internet. Developed by Netscape, SSL is widely used to do two things: to validate the identity of a Web site and to create an encrypted connection for sending credit card and other personal data. Look for a lock icon at the top or bottom of your browser when you order merchandise on the Web. If the lock is closed, you are on a secure SSL or TLS connection (see TLS).

SSL

HTTPS and Port Number 443
An SSL session is started by sending a request to the Web server with an HTTPS prefix in the URL, which causes port number 443 to be placed into the packets. Port 443 is the number assigned to the SSL application on the server (see well-known port).

The Handshake
After the two sides acknowledge each other, the browser sends the server a list of algorithms it supports, and the server responds with its choice and a signed digital certificate. From an internal list of certificate authorities (CAs) and their public keys, the browser uses the appropriate public key to validate the signed certificate. Both sides also send each other random numbers. For more details on certificates, see digital certificate.

Data for Secret Keys Is Passed
The browser extracts the public key of the Web site from the server's certificate and uses it to encrypt a pre-master key and send it to the server. At each end, the client and server independently use the pre-master key and random numbers passed earlier to generate the secret keys used to encrypt and decrypt the rest of the session. See TLS, server-gated cryptography, security protocol and public key cryptography.


SSL

The SSL Handshake
These steps take place to negotiate an SSL session before any user data are transmitted. Steps 5 and 6 verify the integrity of the handshake, ensuring that nobody tampered with any messages. These checksums are called \"message authentication codes\" (see MAC).





THIS DEFINITION IS FOR PERSONAL USE ONLY
All other reproduction is strictly prohibited without permission from the publisher.
© 1981-2010 The Computer Language Company Inc. All rights reserved.

Sponsored White Papers, Webcasts & Resources

  • Google extends secure search

    Google makes it easier than ever to keep snoopers out of your Google searches.

    Blog posts | March 13, 2012 8:10am PDT

  • New 'HTTPS Everywhere' Web browser extension released

    The Electronic Frontier Foundation's great Firefox HTTPS Everywhere browser security extension has been improved and there's now a beta version available for Google Chrome Web browser users.

    Blog posts | February 28, 2012 4:09pm PST

  • GlobalSign: Breach confirmed, SSL certificates not compromised

    GlobalSign admitted that though its public-facing website was hacked, leading to its own SSL certificates being revoked, its secure certificate infrastructure remained unharmed.

    Blog posts | December 14, 2011 6:25am PST

  • Hey, Apple/Google! What's taking you so long to block those fraudulent SSL certificates?

    On August 30, DigiNotar announced that its servers had been compromised and that fake certificates might have leaked into the wild.

    Blog posts | September 8, 2011 6:48am PDT

  • Fake SSL certificates pirate Web sites

    It used to be you knew you could trust a Web site when your Web browser securely connects to it with a valid HTTPS connection. Now, that's trust has been shaken.

    Blog posts | September 6, 2011 3:21pm PDT

  • Twitter adds SSL security

    Worried about people grabbing your Twitter password out of the air? You should be. Twitter is finally addressing the problem.

    Blog posts | August 24, 2011 3:39pm PDT

  • Strangeloop offers the first Google SPDY Web-site acceleration product

    Want a really fast Web-site? Consider adding Google's new SPDY protocol to your site with Strangeloop's Site Optimizer.

    Blog posts | June 13, 2011 3:42pm PDT

  • Netcraft survey indicates slow adoption of Extended Validation SSL certificates

    According to the latest Netcraft SSL Survey, Extended Validation SSL certificates still only account for 2.3% of all valid third party certificates analyzed by the company.

    Blog posts | April 26, 2011 4:05am PDT

  • Ashton Kutcher's Twitter account hacked

    The Twitter account of Ashton Kutcher appears to have been compromised over the past 24 hours, based on two tweets posted on behalf of him.

    Blog posts | March 3, 2011 9:30am PST

  • Facebook secures your Internet Connection

    Maybe Facebook still isn't doing much for your privacy once you're on the site, but at least the social network is working on securing your Internet connection.

    Blog posts | January 26, 2011 10:29am PST

  • Putting a Band-Aid on Firesheep with the new HTTPS Everywhere

    Firesheep isn't making headlines anymore, but it's still out there and causing trouble. Fortunately, there's a new version of HTTPS Everywhere to help block it.

    Blog posts | November 26, 2010 8:52am PST

  • We're a long, long way from securing the Web with SSL/TLS

    It sounds so simple: Just use SSL or TLS for secure Web connections. So, why are 99 out of the world's top 100 Web sites not automatically securing their connections?

    Blog posts | November 11, 2010 12:29pm PST

  • Shearing Firesheep

    The good news is that more tools are appearing that can block Firesheep. The bad news is that they don't get to the root of the problem and they're Firefox specific.

    Blog posts | November 9, 2010 12:42pm PST

  • Herding Firesheep

    The only real answer for Firesheep is for all Web 2.0 sites to start using security. That won't be easy. Here's how to start.

    Blog posts | November 1, 2010 1:09pm PDT

  • Five Ways to Shear Firesheep

    Firesheep has made it possible for any moron to raid your Web use, but there are ways you can stop it. Here are a few of them.

    Blog posts | October 28, 2010 4:28pm PDT

  • The EFF releases new HTTPS Everywhere Firefox extension

    The Electronic Frontier Foundation, in a cooperation with the Tor Project, has released a beta version of the "HTTPS Everywhere" Firefox extension, forcing full-session SSL on sites such as...

    Blog posts | June 18, 2010 5:55am PDT

  • EFF: Gmail vulnerable to snooping: SSL certificates often faked

    The Electronic Freedom Frontier released a report by Christopher Soghoian and Sid Stamm, internet computer researcher's that suggests several international intelligence agencies can and regularly...

    Blog posts | March 24, 2010 6:12pm PDT

  • FBI Director on cyber threats: We can't do it alone

    FBI Director Robert S. Mueller's keynote speech at the RSA Conference in San Francisco brought to the forefront the reality that nobody wants to hear: The FBI can't be the only line of cyber-defense.

    Blog posts | March 5, 2010 8:18am PST

  • Securing your social networking brand

    The hope for the hacked is the event only becomes an embarrassment.

    Blog posts | March 4, 2010 9:04am PST

  • Botnet sends fake SSL pings to CIA, PayPal, others

    In attempt to hide the location of its command-and-control server, the Pushdo botnet has been instructing its infected zombie computers to send fake SSL connections to major Web sites.

    News items | February 1, 2010 2:20pm PST

ie8 fix
Click Here
ie8 fix

The best of ZDNet, delivered

ZDNet Newsletters

Get the best of ZDNet delivered straight to your inbox

Facebook Activity

ie8 fix
ie8 fix