Transport Layer Security
Home > Security Definitions - Transport Layer Security
SearchSecurity.com Definitions (Powered by WhatIs.com)
EMAIL THIS
LOOK UP TECH TERMS Powered by: WhatIs.com
Search listings for thousands of IT terms:
Browse tech terms alphabetically:
A B C D E F G H I J K L M N O P Q R S T U V W X Y Z #

Transport Layer Security

Show me everything on Network Protocols and Security

DEFINITION - Transport Layer Security (TLS) is a protocol that ensures privacy between communicating applications and their users on the Internet. When a server and client communicate, TLS ensures that no third party may eavesdrop or tamper with any message. TLS is the successor to the Secure Sockets Layer (SSL).

TLS is composed of two layers: the TLS Record Protocol and the TLS Handshake Protocol. The TLS Record Protocol provides connection security with some encryption method such as the Data Encryption Standard (DES). The TLS Record Protocol can also be used without encryption. The TLS Handshake Protocol allows the server and client to authenticate each other and to negotiate an encryption algorithm and cryptographic keys before data is exchanged.

The TLS protocol is based on Netscape's SSL 3.0 protocol; however, TLS and SSL are not interoperable. The TLS protocol does contain a mechanism that allows TLS implementation to back down to SSL 3.0. The most recent browser versions support TLS. The TLS Working Group, established in 1996, continues to work on the TLS protocol and related applications.

Learn more about Network Protocols and Security
Voice over IP Security: VoIP Threat Taxonomy: In an excerpt from Voice over IP Security, author Patrick Park reviews VoIP threats, including spam, phishing and other threats against social context.
Securing VoIP Networks: Threats, Vulnerabilities and Countermeasures: In an excerpt from Securing VoIP Networks: Threats, Vulnerabilities and Countermeasures, authors Peter Thermos and Ari Takanen discuss the strengths and weaknesses of SRTP.
Man-in-the-middle attacks: This chapter excerpt examines how man-in-the-middle attacks affect Fibre Channel security and how to determine if your organization is at risk.
VoIP Security Learning Guide: More organizations are choosing to implement VoIP telephony for its cost savings. However, securing the technology comes with its own price tag. This guide is a compilation of resources that review ...
VoIP protocols: A technical guide: This guide reviews SIP and H.323 and their known vulnerabilities, as well as how functional protocol testing ("fuzzing") can help defeat such problems.

CONTRIBUTORS: Mikko Nieminen
LAST UPDATED: 10 Jul 2006

Do you have something to add to this definition? Let us know.
Send your comments to techterms@whatis.com

More resources from around the web:
- SearchSecurity.com provides selected resources on TLS.
- William Stalling briefly explains TLS in his "Web Security" on the Microsoft site.





FILE EXTENSION AND FILE FORMAT LIST
File Extension and File Format List:
A B C D E F G H I J K L M N O P Q R S T U V W X Y Z #


RELATED CONTENT
Security architects fear savvy botnet attacks, IPv6 security issues
An Arbor Networks Inc. survey finds angst over botnet attacks targeting underlying systems, including DNS, load balancers and other back-end...
Twitter domain hijacking highlights DNS security weaknesses
While some security experts call the Twitter incident a non-issue, others say it is a reminder of DNS weaknesses and the need for better...
How do passwordless SSH keys represent an enterprise attack vector?
Passwordless SSH keys represent an attack vector because their safety is determined by the security of the host. Learn how to protect communication...

RELATED GLOSSARY TERMS
Terms from Whatis.com − the technology online dictionary
5 terms you need to know before you employ VoIP  (SearchSecurity.com)
digest authentication  (SearchSecurity.com)
Digest authentication is a method of authentication in which a request from a potential user is received by a network server and then sent to a domain...




Get More Transport Layer Security Answers
TechTarget Security Media
Information Security View this month\\'s issue and subscribe today.
Information Security Decisions Apply online for free conference admission.
SearchSecurity.com
HomeNewsMagazineMultimediaWhite PapersLearningAdviceTopicsEventsAbout Us
SEARCH :     Site Index Powered by: Search Powered by Google

About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.

TechTarget Corporate Web Site  |  Media Kits  |  Site Map




All Rights Reserved, Copyright 2003 - 2010, TechTarget | Read our Privacy Policy 		  TechTarget - The IT Media ROI Experts