SSL definition of SSL in the Free Online Encyclopedia.

SSL

(1) (Solid State Lighting) See LED lighting.

(2) (Secure Sockets Layer) The leading security protocol on the Internet. Developed by Netscape, SSL is widely used to do two things: to validate the identity of a Web site and to create an encrypted connection for sending credit card and other personal data. Look for a lock icon at the top or bottom of your browser when you order merchandise on the Web. If the lock is closed, you are on a secure SSL or TLS connection (see TLS).

HTTPS and Port Number 443
An SSL session is started by sending a request to the Web server with an HTTPS prefix in the URL, which causes port number 443 to be placed into the packets. Port 443 is the number assigned to the SSL application on the server (see well-known port).

The Handshake
After the two sides acknowledge each other, the browser sends the server a list of algorithms it supports, and the server responds with its choice and a signed digital certificate. From an internal list of certificate authorities (CAs) and their public keys, the browser uses the appropriate public key to validate the signed certificate. Both sides also send each other random numbers. For more details on certificates, see digital certificate.

Data for Secret Keys Is Passed
The browser extracts the public key of the Web site from the server's certificate and uses it to encrypt a pre-master key and send it to the server. At each end, the client and server independently use the pre-master key and random numbers passed earlier to generate the secret keys used to encrypt and decrypt the rest of the session. See TLS, server-gated cryptography, security protocol and public key cryptography.

The SSL Handshake

These steps take place to negotiate an SSL session before any user data are transmitted. Steps 5 and 6 verify the integrity of the handshake, ensuring that nobody tampered with any messages. These checksums are called "message authentication codes" (see MAC).

1.	(language)	SSL - Synthesizer Specification Language.
2.	(language)	SSL - Syntax/Semantic Language (S/SL).
3.	(networking, World-Wide Web)	SSL - Secure Sockets Layer.

Mentioned in	?		References in periodicals archive	?		Encyclopedia browser	?		Full browser	?
No references found	The vulnerability, described as an SSL authentication gap, results from an underlying weakness in the SSL protocol standard, the researchers said. Serious vulnerability in SSL discovered by Angela Moscaritolo / SC Magazine To summarize the fact about the importance of Security in web hosting services most of the Australian Web hosting companies has taken initiative to deliver web hosting solution ensuring secured SSL certificate service, which will in turn help them to get more repeat business. Australian Web Hosting Companies Opt for SSL Certification to Ensure ... by Smit Mathur / Internet and Businesses Online community lt;p>The vulnerability means that attackers can lurk in the middle of what victims think are secure SSL sessions with banks, retailers and other secure Web sites, picking off passwords and other information that can be used later to steal account funds or compromise confidential business data, say the researchers, Mike Zusman, a consultant with Intrepidus, and Alexander Sotirov, an independent researcher. SSL hack vulnerability details to emerge by Network World Middle East	SS/DD SS7 SSA SSA Global SSA Service SSAD SSADM SSB SSBA SSC SSCP SSD SSDP SSE SSE-2 SSE4 SSFDC SSH SSH File Transfer Protocol SShA—Ekonomika, Politika, Ideologiia SSI SSID SSID broadcast SSII SSJS SSL SSL certificate SSLeay SSM SSMA SSO SSP SSR SST SSTV SSU SSU-Kung Tu Ssu-ma Ch'ien Ssu-Ma Chien Ssu-Ma Hsiang-Ju Ssu-Ma Kuang Ssuping Ssuwa St St Andrews Static Language St Augustine house ST connector St Petersburg standard ST W ST-506 St-Ouen	SSJRLC SSJRTC SSJS SSJS SSJYSL SSK SSKA SSKC SSKDP SSKE SSKHKH SSKI SSKI SSKI SAV SSKJ SSKK SSKL SSKM SSKMDT SSKN SSKO SSKOP SSKP SSKS SSKU SSKW SSL SSL (disambiguation) SSL Certificate SSL Proxy SSL Proxy SSL VPN SSL VPN SSL VPN SSL VPN Client SSL/TLS SSL3 Ssla SSLASPA SSLAT SSLB SSLC SSLC2 SSLCA SSLCC SSLD SSLDC SSLDL Ssle SSLEA SSLeay SSLEC SSLEF SSLF

Mentioned in

References in periodicals archive

Encyclopedia browser

Full browser

No references found

The vulnerability, described as an SSL authentication gap, results from an underlying weakness in the SSL protocol standard, the researchers said.

Serious vulnerability in SSL discovered by Angela Moscaritolo / SC Magazine

To summarize the fact about the importance of Security in web hosting services most of the Australian Web hosting companies has taken initiative to deliver web hosting solution ensuring secured SSL certificate service, which will in turn help them to get more repeat business.

Australian Web Hosting Companies Opt for SSL Certification to Ensure ... by Smit Mathur / Internet and Businesses Online community

lt;p>The vulnerability means that attackers can lurk in the middle of what victims think are secure SSL sessions with banks, retailers and other secure Web sites, picking off passwords and other information that can be used later to steal account funds or compromise confidential business data, say the researchers, Mike Zusman, a consultant with Intrepidus, and Alexander Sotirov, an independent researcher.

SSL hack vulnerability details to emerge by Network World Middle East