- Overview of SSL
The Secure Sockets Layer (SSL) is a method for providing security for web based applications
Nearly all businesses have websites (as well as government agencies and individuals) a large enthusiasm exists for setting up facilities on the Web for electronic commerce. Of course there are major security issues involved here that need to be addressed. Nobody wants to send their credit card number over the Internet unless they have a guarantee that only the intended recipient will receive it. As businesses begin to see the threats of the Internet to electronic commerce, the demand for secure web pages grows.
- Why SSL Certificate is required?
SSL encrypts the data sent through the internet, so only the recipient can understand the data. When SSL is used, the data sent on the internet cant be decrypted on the middle.It protects the data from hackers
- How SSL Works?
1. User opens SSL Secured site.
2. Request sent to TCP, Checks the DNS records for IP adress to find the website host.
3. Website Records found and the request will be sent to Host web Server, requesting SSL connection from Website Host.
4. Host responds with valid SSL Certificate.
5. Secure connection is established and the data transferred is encrypted.
- How SSL Protocol works?
This protocol provides two services for SSL connections:
1. Confidentiality - using conventional encryption.
2. Message Integrity - using a Message Authentication Code (MAC).
In order to operate on data the protocol performs the following actions
It takes an application message to be transmitted and fragments it into manageable blocks. These blocks are 214 = 16, 384 bytes or less.
These blocks are then optionally compressed which must be lossless and may not increase the content length by more than 1024 bytes.
A message authentication code is then computed over the compressed data using a shared secret key. This is then appended to the compressed (or plain-text) block.
The compressed message plus MAC are then encrypted using symmetric encryption.Encryption may not increase the content length by more than 1024 bytes, so that the total length may not exceed 214 + 2048. A number of different encryption algorithms are permitted.
The final step is to pre-append a header, consisting of the following fields:
– Content type (8 bits) - The higher layer protocol used to process the enclosed fragment.
– Major Version (8 bits) - Indicates major version of SSL in use. For SSLv3, the value is 3.
– Minor Version (8 bits) - Indicates minor version in use. For SSLv3, the value is 0.
– Compressed Length (16 bits) - The length in bytes of the compressed (or plaintext) fragment.
- Where can i buy SSL Certificate?
PFB Some of the SSL Providers.