What is TLS/SSL? Link to heading
TLS (Transport Layer Security) and SSL (Secure Sockets Layer) are cryptographic protocols designed to provide secure communication over a network. TLS was developed by the Internet Engineering Task Force (IETF) in 1999 to be an upgrade/replacement for SSL which is was developed by Netscape in 1994.
Why should anybody care? Link to heading
Now that you know what TLS and SSL are, why should we care? Well first of all, it helps to understand the purpose SSL/TLS serves when it comes to modern webservers and network interfacing. There are three main functions of TLS which include the following:
- Encryption: Encrypts the data being transmitted, ensuring that it cannot be read by unauthorized parties.
- Authentication: Verifies the identity of the parties involved in the communication.
- Integrity: Ensures that the data has not been tampered with during transmission.
The TLS/SSL handshake process1 Link to heading
-
Each TLS certificate consists of a key pair made of a public key and private key. These keys are important because they interact behind the scenes during website transactions.
-
Every time you visit a website, the client server and web browser communicate to ensure there is a secure TLS/SSL encrypted connection.
-
When a web browser (or client) directs to a secured website, the website server shares its TLS/SSL certificate and its public key with the client to establish a secure connection and a unique session key.
-
The browser confirms that it recognizes and trusts the issuer, or Certificate Authority, of the SSL certificate. The browser also checks to ensure the TLS/SSL certificate is unexpired, unrevoked, and that it can be trusted.
-
The browser sends back a symmetric session key and the server decrypts the symmetric session key using its private key. The server then sends back an acknowledgement encrypted with the session key to start the encrypted session.
-
Server and browser now encrypt all transmitted data with the session key. They begin a secure session that protects message privacy, message integrity, and server security.
Updates Link to heading
Any updates being made will be below. Here is a table with jumps to various dates with a short description of changes made:
Date: Short description
TBD: TBA