SECURE SOCKET LAYER (SSL) By: Hassan Waqar
Feb 23, 2016
SECURE SOCKET LAYER (SSL)
By: Hassan Waqar
WHAT IS SECURE SOCET LAYER (SSL) ? A PROTOCOL for securely
transmitting data via the internet. NETWORK LAYER application. Developed by NETSCAPE.
SSL PROTOCOL LAYERS
HOW SSL WORKSWhen a web browser accesses a site secured by an SSL certificate, the following events happen:
“SSL Handshake”
THE SSL HANDSHAKE
Browser (client) asks the server (website) for its identity.
Server provides its SSL Certificate. Browser examines validity of the
certificate.
THE SSL HANDSHAKE (cont’d)
If trusted, the browser sends confirmation to server.
The web server replies with a digitally-signed message that starts SSL-encrypted exchange of information (“session”).
SSL CRYPTOGRAPHIC SYSTEM
Uses PUBLIC KEY and PRIVATE KEY to encrypt data.
Server sends the public key.
Browser (client) checks to ensure it trusts the server.
SSL CRYPTOGRAPHIC SYSTEM
The private key is used to encrypt information passed to the browser, which can then be decrypted with the public key.
Encryption Strength
128-bit keys It allows
340,282,366,920,938,463,463,374,607,431,768,211,456 unique encryptions codes.
SSL OBJECTIVES
1. Authentication between client and server: cryptographic techniques.
2. Ensuring data integrity.3. Securing data privacy.
Types of SSL Certificates
1. Domain Validation (DV) For the domain to approve the CSR. Validate domain owner and what they
intend to use the domain for.
Types of SSL Certificates
2. Organization Validation (OV) “high assurance” certificates ensures the identity of the domain
owner aids in identifying potential “phishing”
activities.
Types of SSL Certificates
3. Extended Validation (EV) display the green URL bar promise users the safest possible
experience checks the identity and confirms the
authenticity.
Setting up a new SSL Certificate Admin issues a Certificate Signing
Request. CA validates information and issues
SSL Certificate Admin installs certificate on the
server. Expires within 1 to 3 years.
Transport Layer Security
SSL has more recently known as Transport Layer Security (TLS).
THE END
References
http://www.windowsecurity.com/articles/secure_socket_layer.html
http://en.wikipedia.org/wiki/Secure_Sockets_Layer
http://www.digicert.com/ssl.htm http://www.gordano.com/kb.htm?q=
1486