Secure Sockets Layer
Home > Security Definitions - Secure Sockets Layer
SearchSecurity.com Definitions (Powered by WhatIs.com)
EMAIL THIS
LOOK UP TECH TERMS Powered by: WhatIs.com
Search listings for thousands of IT terms:
Browse tech terms alphabetically:
A B C D E F G H I J K L M N O P Q R S T U V W X Y Z #

Secure Sockets Layer

Show me everything on SSL and TLS VPN Security

DEFINITION - The Secure Sockets Layer (SSL) is a commonly-used protocol for managing the security of a message transmission on the Internet. SSL has recently been succeeded by Transport Layer Security (TLS), which is based on SSL. SSL uses a program layer located between the Internet's Hypertext Transfer Protocol (HTTP) and Transport Control Protocol (TCP) layers. SSL is included as part of both the Microsoft and Netscape browsers and most Web server products. Developed by Netscape, SSL also gained the support of Microsoft and other Internet client/server developers as well and became the de facto standard until evolving into Transport Layer Security. The "sockets" part of the term refers to the sockets method of passing data back and forth between a client and a server program in a network or between program layers in the same computer. SSL uses the public-and-private key encryption system from RSA, which also includes the use of a digital certificate.

TLS and SSL are an integral part of most Web browsers (clients) and Web servers. If a Web site is on a server that supports SSL, SSL can be enabled and specific Web pages can be identified as requiring SSL access. Any Web server can be enabled by using Netscape's SSLRef program library which can be downloaded for noncommercial use or licensed for commercial use.

TLS and SSL are not interoperable. However, a message sent with TLS can be handled by a client that handles SSL but not TLS.

Getting started with secure sockets layers
To explore how the secure sockets layer is used in the enterprise, here are some additional resources:
Pros and cons of tunnelless VPN: Thinking about implementing a tunnelless VPN? Learn how to do it and the security risks associated with the technology.
SSL security risks and limitations: Learn about the limitations, lack of authentication standards and overall security risks associated with SSL in this excerpt from Dan Sullivan's book, A Shortcut Guide to Extended Validation SSL Certificates.

Learn more about SSL and TLS VPN Security
Crypto basics: VPNs: In this excerpt of Chapter 3 from "Cryptography for Dummies," author Chey Cobb explains how virtual private networks (VPNs) use encryption to secure data in transit.
The Shortcut Guide to Extended Validation SSL Certificates: In an excerpt from Dan Sullivan's book, "A Shortcut Guide to Extended Validation SSL Certificates," the author explains some of the limitations of SSL.
Snyder On Security: An insider's guide to the essentials: Joel Snyder, senior partner with consultancy Opus One, provides an in-depth look at information security trends and technologies.
VPNs and remote access: Secure deployment, setup and strategies: Learn about the latest innovations in VPN technology, IPsec VPN identity and authentication options, and secure VPN deployment strategies.
Network Access Control Learning Guide: Learn how to block and secure untrusted endpoints, and control user access with this Learning Guide.
Quiz: Web application threats and vulnerabilities: This quiz will help you determine how knowledgeable you are about securing your Web apps and whether you need to hone your Web security skills.

CONTRIBUTORS: Brendan Cusack
LAST UPDATED: 08 Oct 2009

Do you have something to add to this definition? Let us know.
Send your comments to techterms@whatis.com

More resources from around the web:
- Netscape provides the SSL 3.0 Specification.
- Netscape describes SSL as one of several security technologies that it supports.
- Verisign , the leading digital certificate authority, provides over 125,000 Web sites with SSL server certificates, mainly for use in e-commerce.





FILE EXTENSION AND FILE FORMAT LIST
File Extension and File Format List:
A B C D E F G H I J K L M N O P Q R S T U V W X Y Z #


RELATED CONTENT
US CERT warns of clientless SSL VPN vulnerability
VPN software from Cisco Systems, Juniper and others make users susceptible to Web-based attacks, according to an advisory from the U.S. Computer...
Expert calls SSL protocol vulnerability a non issue
The researchers who discovered the SSL vulnerability warn that it could have far reaching affects and are working with a consortium of vendors to...
How SSL-encrypted Web connections are intercepted
Sherri Davidoff reviews how encrypted Web connections can be sniffed, and ways that users can reduce their risk.

RELATED GLOSSARY TERMS
Terms from Whatis.com − the technology online dictionary
Secure Shell  (SearchSecurity.com)
server accelerator card  (SearchSecurity.com)




Get More Secure Sockets Layer Answers
TechTarget Security Media
Information Security View this month\\'s issue and subscribe today.
Information Security Decisions Apply online for free conference admission.
SearchSecurity.com
HomeNewsMagazineMultimediaWhite PapersLearningAdviceTopicsEventsAbout Us
SEARCH :     Site Index Powered by: Search Powered by Google

About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.

TechTarget Corporate Web Site  |  Media Kits  |  Site Map




All Rights Reserved, Copyright 2003 - 2009, TechTarget | Read our Privacy Policy 		  TechTarget - The IT Media ROI Experts