SECURE SOCKET LAYER (SSL)

SECURE SOCKET LAYER (SSL)

By: Hassan Waqar

WHAT IS SECURE SOCET LAYER (SSL) ? A PROTOCOL for securely

transmitting data via the internet. NETWORK LAYER application. Developed by NETSCAPE.

SSL PROTOCOL LAYERS

HOW SSL WORKSWhen a web browser accesses a site secured by an SSL certificate, the following events happen:

“SSL Handshake”

THE SSL HANDSHAKE

Browser (client) asks the server (website) for its identity.

Server provides its SSL Certificate. Browser examines validity of the

certificate.

THE SSL HANDSHAKE (cont’d)

If trusted, the browser sends confirmation to server.

The web server replies with a digitally-signed message that starts SSL-encrypted exchange of information (“session”).

SSL CRYPTOGRAPHIC SYSTEM

Uses PUBLIC KEY and PRIVATE KEY to encrypt data.

Server sends the public key. 

Browser (client) checks to ensure it trusts the server.

SSL CRYPTOGRAPHIC SYSTEM

The private key is used to encrypt information passed to the browser, which can then be decrypted with the public key.

Encryption Strength

128-bit keys It allows

340,282,366,920,938,463,463,374,607,431,768,211,456 unique encryptions codes.

SSL OBJECTIVES

1. Authentication between client and server: cryptographic techniques.

2. Ensuring data integrity.3. Securing data privacy.

Types of SSL Certificates

1. Domain Validation (DV) For the domain to approve the CSR. Validate domain owner and what they

intend to use the domain for.

Types of SSL Certificates

2. Organization Validation (OV) “high assurance” certificates ensures the identity of the domain

owner aids in identifying potential “phishing”

activities.

Types of SSL Certificates

3. Extended Validation (EV) display the green URL bar promise users the safest possible

experience checks the identity and confirms the

authenticity.

Setting up a new SSL Certificate Admin issues a Certificate Signing

Request. CA validates information and issues

SSL Certificate Admin installs certificate on the

server. Expires within 1 to 3 years.

Transport Layer Security

SSL has more recently known as Transport Layer Security (TLS).

THE END

References

http://www.windowsecurity.com/articles/secure_socket_layer.html

http://en.wikipedia.org/wiki/Secure_Sockets_Layer

http://www.digicert.com/ssl.htm http://www.gordano.com/kb.htm?q=

1486