Know More About Secure Sockets Layer (SSL)

 Leave a Comment on Know More About Secure Sockets Layer (SSL)  Posted in Tech-Tips
𝓘 💖 to Share: TwitterFacebookLinkedin
Secure Socket Layer (SSL) is the most widely used technology for providing secure communication between the web client and the web server. Most of us are familiar with many sites such as Gmail, Facebook, and banking, and almost every site, etc. has HTTPS protocol in their login pages. When we see this, we may wonder what’s the difference between HTTP and HTTPS. In simple words, the HTTP protocol is used for standard communication between the Web server and the client. HTTPS is used for SECURE communication.
 
The SSL certificate has two specific functions:
    1. Authentication and Verification: The SSL certificate contains information about the authenticity of certain details regarding the identity of a person, business or website, which it will display to visitors on your website when they click on the browser’s padlock symbol or trust mark. The vetting criteria used by Certificate Authorities to determine if an SSL certificate should be issued is most stringent with an Extended Validation (EV) SSL certificate; making it the most trusted SSL certificate available.
    2. Data Encryption: The SSL certificate also enables encryption, which means that the sensitive information exchanged via the website cannot be intercepted or read by anyone other than the intended recipient. It’s kind of like sealing a letter in an envelope before sending it through the mail.
The Secure Socket Layer (SSL) protocol was created by Netscape to ensure secure transactions between web servers and browsers. The protocol uses a third party, the Certificate Authority (CA), to identify one end or both ends of the transaction. This is in short how it works.

Here a certain set of steps that were followed to have secure communication

    1. A browser requests a secure page (usually https://).
    2. The web server sends its public key with its certificate.
    3. The browser checks that the certificate was issued by a trusted party (usually a trusted root CA), that the certificate is still valid and that the certificate is related to the site contacted.
    4. The browser then uses the public key to encrypt a random symmetric encryption key and sends it to the server with the encrypted URL required as well as other encrypted http data.
    5. The web server decrypts the symmetric encryption key using its private key and uses the symmetric key to decrypt the URL and HTTP data.
    6. The web server sends back the requested HTML document and HTTP data encrypted with the symmetric key.
    7. The browser decrypts the HTTP data and HTML document using the symmetric key and displays the information.

Advantages of SSL Certificate –

As SSL is the standard mark to ensure users about website safety it includes the following benefits –

    1. Personal Information Protection
    2. SSL certificate affirms your identity
    3. Google gives preference to websites in search engine ranking
    4. SSL certificate improves customer’s trust

Leave a Reply

Your email address will not be published. Required fields are marked *