SSL


Also found in: Dictionary, Medical, Financial, Acronyms, Wikipedia.

SSL

(language)

SSL

(language)

SSL

(networking, World-Wide Web)

SSL

(1) (Solid State Lighting) See LED lighting.

(2) (Secure Sockets Layer) The leading security protocol on the Internet prior to TLS. Developed by Netscape, SSL has been widely used to validate the identity of a website, to create an encrypted connection for credit card and personal data and to ensure the transmission is without error.

HTTPS and Port Number 443
An SSL session starts by sending a request to the Web server with an HTTPS prefix in the URL, which inserts SSL port number 443 into the packets. See well-known port.

The Handshake
After both sides acknowledge each other, the browser sends the server a list of supported algorithms, and the server responds with its choice and a signed digital certificate. From an internal list of certificate authorities (CAs), the browser uses the appropriate public key to validate the certificate. Both sides also send each other random numbers. See digital certificate.

Data for Secret Keys Is Passed
The browser extracts the public key of the website from the server's certificate and uses it to encrypt a pre-master key and send it to the server. At each end, the client and server independently use the pre-master key and random numbers passed earlier to generate the secret keys used to encrypt and decrypt the rest of the session. See TLS, server-gated cryptography, OpenSSL, security protocol and public key cryptography.

SSL and TLS
SSL was superseded by TLS (Transport Layer Security). TLS 1.0 came out in 1999 and is very similar to the last SSL version (SSL 3.0, 1996) but not identical. They are not interoperable; however, most websites and browsers support both, and the acronyms SSL/TLS and TLS/SSL are widely used. See TLS.


The Lock Icon
The lock icon on the browser indicates a secure SSL or TLS connection (see TLS).







The SSL Handshake
These steps take place to negotiate an SSL session before any user data are transmitted. Steps 5 and 6 verify the integrity of the handshake, ensuring that nobody tampered with any messages. These checksums are called "message authentication codes" (see MAC).
References in periodicals archive ?
FirePass customers also benefit from complete business continuity by deploying the SSL VPN solution along with F5's global traffic management product.
Security Regulations Prompt Companies to Deploy SSL VPN Devices
Network Transparency: Unlike existing SSL proxies, the SSL Inspector is deployed as a "bump in the wire" and is completely transparent to both end users and intermediate networking elements.
NeoAccel, SSL VPN-Plus, Intelligent Connection Acceleration Architecture, ICAA and Secure Everything are trademarks of NeoAccel, Inc
Companies around the world are rapidly expanding office network access and are widely adopting SSL VPN technology as a replacement to traditional IPSec VPNs for secure, remote access.
We've witnessed widespread SSL adoption by our customers because our BIG-IP solution, in addition to SSL acceleration, also serves as an enforcement point for securing application and web services," said Dan Matte, vice-president of product management and marketing at F5 Networks.
Two unique factors contribute to Cybertrust's EV SSL certificate offering rising above those of other vendors.
Offering a superior choice for enterprises and service providers building high-performance, scaleable, and profitable IP networks, the BIG-IP 5000 is the first and only port dense Internet Traffic Management solution that offers (1) integrated SSL (Secure Sockets Layer) at no extra charge to increase web server performance and ensure transaction security, (2) four times the processing power of any product in its class to deeply examine packets and intelligently direct traffic to the correct destination, (3) a centralized processing and switch fabric design for an "all-in-one" solution that reduces deployment costs and administration duties, and (4) an open API for seamless communication with all F5 products and any 3rd party application that supports F5's iControl.
Nasdaq:JNPR) today announced that Forrester Research has named Juniper Networks as the leading vendor and "best all-around solution" in the SSL virtual private network (VPN) market.
With RSA Security's SSL components already a dominant choice for securing Internet transactions, our new wireless security components are designed to provide complete, end-to-end protection across both the wired and wireless worlds," says Scott Schnell, senior vice president of marketing at RSA Security.
To do so, these companies make extensive use of SSL.
I am very pleased that nCipher has been able to bring these products fully into our portfolio, enabling us to offer our customers one of the fastest and most secure ranges of SSL acceleration products in the world," said Alex van Someren, Chief Executive Officer of nCipher.