SSL


Also found in: Dictionary, Medical, Financial, Acronyms, Wikipedia.

SSL

(language)

SSL

(language)

SSL

(networking, World-Wide Web)

SSL

(1) (Solid State Lighting) See LED lighting.

(2) (Secure Sockets Layer) The leading security protocol on the Internet prior to TLS. Developed by Netscape, SSL has been widely used to validate the identity of a website, to create an encrypted connection for credit card and personal data and to ensure the transmission is without error.

HTTPS and Port Number 443
An SSL session starts by sending a request to the Web server with an HTTPS prefix in the URL, which inserts SSL port number 443 into the packets. See well-known port.

The Handshake
After both sides acknowledge each other, the browser sends the server a list of supported algorithms, and the server responds with its choice and a signed digital certificate. From an internal list of certificate authorities (CAs), the browser uses the appropriate public key to validate the certificate. Both sides also send each other random numbers. See digital certificate.

Data for Secret Keys Is Passed
The browser extracts the public key of the website from the server's certificate and uses it to encrypt a pre-master key and send it to the server. At each end, the client and server independently use the pre-master key and random numbers passed earlier to generate the secret keys used to encrypt and decrypt the rest of the session. See TLS, server-gated cryptography, OpenSSL, security protocol and public key cryptography.

SSL and TLS
SSL was superseded by TLS (Transport Layer Security). TLS 1.0 came out in 1999 and is very similar to the last SSL version (SSL 3.0, 1996) but not identical. They are not interoperable; however, most websites and browsers support both, and the acronyms SSL/TLS and TLS/SSL are widely used. See TLS.


The Lock Icon
The lock icon on the browser indicates a secure SSL or TLS connection (see TLS).







The SSL Handshake
These steps take place to negotiate an SSL session before any user data are transmitted. Steps 5 and 6 verify the integrity of the handshake, ensuring that nobody tampered with any messages. These checksums are called "message authentication codes" (see MAC).
References in periodicals archive ?
Enterprises worldwide have increasingly turned to SSL VPNs due to their lower cost and easier management than IP Security (IPSec)-based solutions, which require installation of a VPN concentrator and client software on all employee PCs and laptops.
Aventail End Point Control (EPC) is a framework that protects end users of an Aventail SSL VPN and the network from inadvertent or willful security threats introduced by the system (client) used for remote access.
In such a scenario, enterprises will be compelled to depend on SSL VPN products to refine their business models and leverage access to new consumer as well as labour markets.
The SSL VPN Pavilion features leading technology companies in the SSL VPN industry, and is located in Booth 811 in the Security Zone.
SSL communications constitute a significant and growing percentage of the traffic in enterprise LAN/WAN and service provider networks.
The ICSA Labs SSL VPN Certification program is an independent and comprehensive process that rigorously tests, assesses, and validates SSL VPNs in a simulated, real-world, Internet-worked environment on a continual basis.
Network access control will be a huge market, and our SSL VPN customers have asked for a NAC product from us that extended beyond current solutions," said Michel Susai, chairman and CEO of Neo Accel.
0's new features is full Network Layer (L3) VPN access and the expanded list of supported protocols that provide IT managers with simplified SSL management solutions.
Resource Publishing enables companies to establish an encrypted, bi-directional connection on demand between different sites or locations using SSL VPN tunnels over any IP network or the Internet.
F5's Internet traffic management products are positioned at a strategic point in the network, inspecting all traffic, making their decision to integrate SSL into their switches and appliances a wise move," said Neil Osipuk, directing analyst at Infonetics Research.
We believe that forecasting is the foundation of a synchronized supply chain," said Jim Hourigan, vice president of IT and Logistics of SSL International.
Since introducing SSL VPN-Plus to the enterprise in early 2006, we have rapidly gained sales based on the technical superiority of our products," said Michel Susai, chairman and CEO of NeoAccel.