21-08-2012, 04:54 PM
SSL PROTOCOL
Secure Sockets Layer Protoc.pptx (Size: 280.19 KB / Downloads: 28)
SSL – Secure Socket Layer
it provides a secure transport connection between applications
(e.g., a web server and a browser)
SSL was developed by Netscape
SSL version 3.0 has been implemented in many web browsers
(e.g., Netscape Navigator and MS Internet Explorer) and web
servers and widely used on the Internet
SSL v3.0 was specified in an Internet Draft (1996)
it evolved into RFC 2246 and was renamed to TLS (Transport
Layer Security)
TLS can be viewed as SSL v3.1
TLS is an standardization initiative whose goal is to come out with an internet standard version of SSL.
If you've purchased an item over the Internet with a site address or URL that starts with "https" instead of "http," you've used Secure Sockets Layer, or SSL. SSL is a protocol that encrypts information on a Web page, like personal details or credit card numbers, so unauthorized users cannot see your data. SSL also authentic the site receiving your data
SSL components
1 SSL Handshake Protocol
– negotiation of security algorithms and parameters
– key exchange
– server authentication and optionally client authentication
2 SSL Record Protocol
– fragmentation
– compression
– message authentication and integrity protection
– encryption
3 SSL Alert Protocol
– error messages (fatal alerts and warnings)
4 SSL Change Cipher Spec Protocol
– a single message that indicates the end of the SSL handshake
client hello message
Version- this field identifies the highest version of ssl client can support. It can be 2,3 or 3.1
Random- this field use for later . It contain two sub field-
Client key authentication
The client initiate the third phase and is the sole sender of all the messages. This phase consist three steps-
Certificate – this is optional and performed only if server had requested .if the server has requested for certificate and client does not have one then client send no certificate message.
SSL 3 Protocol
The third version of the SSL, or Secure Sockets Layer, protocol is widely abbreviated SSL 3. Designed in 1995, SSL 3 is a major enhancement of the preceding SSL version, called SSL 2.
The SSL 3 protocol provides greater security than SSL 2, partly by protecting the handshake procedure more effectively and incorporating stronger encryption features. The SSL 3 protocol is also backwards compatible with SSL 2, which means SSL 3 works with clients and servers using SSL 2.
Secure Sockets Layer Protoc.pptx (Size: 280.19 KB / Downloads: 28)
SSL – Secure Socket Layer
it provides a secure transport connection between applications
(e.g., a web server and a browser)
SSL was developed by Netscape
SSL version 3.0 has been implemented in many web browsers
(e.g., Netscape Navigator and MS Internet Explorer) and web
servers and widely used on the Internet
SSL v3.0 was specified in an Internet Draft (1996)
it evolved into RFC 2246 and was renamed to TLS (Transport
Layer Security)
TLS can be viewed as SSL v3.1
TLS is an standardization initiative whose goal is to come out with an internet standard version of SSL.
If you've purchased an item over the Internet with a site address or URL that starts with "https" instead of "http," you've used Secure Sockets Layer, or SSL. SSL is a protocol that encrypts information on a Web page, like personal details or credit card numbers, so unauthorized users cannot see your data. SSL also authentic the site receiving your data
SSL components
1 SSL Handshake Protocol
– negotiation of security algorithms and parameters
– key exchange
– server authentication and optionally client authentication
2 SSL Record Protocol
– fragmentation
– compression
– message authentication and integrity protection
– encryption
3 SSL Alert Protocol
– error messages (fatal alerts and warnings)
4 SSL Change Cipher Spec Protocol
– a single message that indicates the end of the SSL handshake
client hello message
Version- this field identifies the highest version of ssl client can support. It can be 2,3 or 3.1
Random- this field use for later . It contain two sub field-
Client key authentication
The client initiate the third phase and is the sole sender of all the messages. This phase consist three steps-
Certificate – this is optional and performed only if server had requested .if the server has requested for certificate and client does not have one then client send no certificate message.
SSL 3 Protocol
The third version of the SSL, or Secure Sockets Layer, protocol is widely abbreviated SSL 3. Designed in 1995, SSL 3 is a major enhancement of the preceding SSL version, called SSL 2.
The SSL 3 protocol provides greater security than SSL 2, partly by protecting the handshake procedure more effectively and incorporating stronger encryption features. The SSL 3 protocol is also backwards compatible with SSL 2, which means SSL 3 works with clients and servers using SSL 2.