| Secure Sockets Layer or SSL is an Internet | | | | host site. |
| communication protocol, or set of rules, that was | | | | - Then the browser encrypts the private session key |
| developed by Netscape for the transmission of private | | | | with the host website's public key thereby enabling only |
| documents. Transport Layer Security (TLS) is a | | | | the host site to read the session key. Depending on |
| protocol that guarantees privacy and data integrity | | | | the browser, the client net surfer might also see a |
| between applications communicating over the Internet. | | | | locked key icon, which indicates that the surfing |
| TLS is an extension of SSL, and they are often | | | | session is secure. |
| referred to as either SSL/TLS or TLS/SSL. | | | | - After a secured surfing session is established the |
| The cryptographic system used by SSL incorporates | | | | entire communication will be encrypted and it can only |
| two keys for data encryption: | | | | be decrypted either by the client net surfer or the host |
| 1. A Public key, which is known to all. | | | | server. |
| 2. A Private key that is known only to the recipient of | | | | However there are some limitations that SSL users |
| the document or message. | | | | should keep in mind. |
| Using these keys, SSL is able to create a secure | | | | - It cannot be guaranteed that only the client net surfer |
| connection between the client and the server to send | | | | or the host can decrypt the communication. Hackers |
| data. Several versions of the protocols are in | | | | are often successful in guessing the private key by |
| widespread use in applications like web browsing, | | | | trying all possible encoding combinations. To prevent |
| electronic mail, Internet faxing, instant messaging and | | | | SSL hacking, use 128 bit keys or better. |
| voice-over-IP (VoIP). Additionally, websites use this | | | | - SSL is used to ensure that the client net surfer's |
| protocol for securing private information like the credit | | | | communication is not spied upon; however there are |
| card numbers of users. Website addresses or URLs | | | | many so called secure sites that do not get approval |
| requiring SSL connections begin with https instead of | | | | of independent third-parties but instead self-approve |
| http. | | | | keys. |
| Secure Sockets Layer (SSL) works in the following | | | | - Some sites utilize third-parties which are free and |
| way. | | | | seldom validate the company. In such cases SSL will |
| - A website is visited by a net surfer (client) who | | | | not ensure the client net surfer that he/she is actually |
| accesses an URL page that has been secured which | | | | communicating with the intended website and not a |
| is indicated by the https rather than httpor other | | | | hacker impersonating the site in order to obtain |
| message from the browser. | | | | confidential information like your credit card number or |
| - The host server automatically acts in response by | | | | bank account number. |
| providing the website's digital certificate that validates | | | | It is very important for client net surfers to pay careful |
| the site to the client net surfer. | | | | attention to warnings like "domain name does not |
| - The web browser of the client net surfer generates | | | | match" and "expired certificates" that are issued by |
| an exclusive browsing session key or private key for | | | | the SSL when connecting to secure websites to |
| the encryption of the entire communication with the | | | | prevent any incidents that might be dangerous. |