Secure Sockets Layer

TLS and SSL are an integral part of most Web browsers (clients) and Web servers. If a Web site is on a server that supports SSL, SSL can be enabled and specific Web pages can be identified as requiring SSL access. Any Web server can be enabled by using Netscape's SSLRef program library which can be downloaded for noncommercial use or licensed for commercial use.

TLS and SSL are not interoperable. However, a message sent with TLS can be handled by a client that handles SSL but not TLS.

Getting started with secure sockets layers

To explore how the secure sockets layer is used in the enterprise, here are some additional resources:

Pros and cons of tunnelless VPN: Thinking about implementing a tunnelless VPN? Learn how to do it and the security risks associated with the technology.

SSL security risks and limitations: Learn about the limitations, lack of authentication standards and overall security risks associated with SSL in this excerpt from Dan Sullivan's book, A Shortcut Guide to Extended Validation SSL Certificates.

Read more about Secure Sockets Layer: - Netscape provides the SSL 3.0 Specification. - Netscape describes SSL as one of several security technologies that it supports. - Verisign , the leading digital certificate authority, provides over 125,000 Web sites with SSL server certificates, mainly for use in e-commerce. - Go to SearchSecurity.com for security-specific information on SSL

Do you have something to add to this definition? Let us know. Send your comments to techterms@whatis.com

BROWSE BY TAG Network Protocols and Security,   Enterprise Network Security,   SSL and TLS VPN Security,   Secure VPN Setup and Configuration,   VIEW ALL TAGS

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT Kaminsky interview: DNSSEC addresses cross-organizational trust and security A year since his serious DNS cache poisoning bug was made public, security researcher Dan Kaminsky advocates for widespread DNSSEC deployments. PCI compliance requirement 4: Encrypt transmissions Diana Kelley and Ed Moyle of Security Curve review PCI compliance requirement 4: "Encrypt transmission of cardholder data across open, public... Balancing security and performance: Protecting layer 7 on the network This video will explain options for securing application-layer traffic using network security technologies, architectures and processes, including...

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary 5 terms you need to know before you employ VoIP  (SearchSecurity.com) digest authentication  (SearchSecurity.com) Digest authentication is a method of authentication in which a request from a potential user is received by a network server and then sent to a domain...