Network - TLS

Network - TLS

About

TLS is a cryptographic protocol and the successor to SSL, and is described in the RFC 2246 standard.

The protocol name was changed from SSL to TLS when it became a standard.

TLS is a protocol that helps provide privacy between communicating applications. When a server and client communicate, TLS ensures that no third party can overhear or tamper with any messages.

TLS is

an option of a TCP connection
may be used to secure UDP datagram (Rfc 6347 - Datagram Transport Layer Security Version (DTLS protocol) 1.2)

Version

Externally	Internally
SSL 2.0	SSL 2.0
SSL 3.0	SSL 3.0
TLS 1.0	SSL 3.1
TLS 1.1	SSL 3.2
TLS 1.2	SSL 3.3

Management

Handshake / Procedure

See SSL - Handshake

Installation

For SSL/TLS negotiation (handshake) to take place, the system administrator must prepare the minimum of 2 files:

Private Key
and Certificate.

See

Firefox:

Chrome dev tool:

Check / Validate

https://www.ssllabs.com/ssltest/analyze.html

Documentation / Reference

Comparison_of_TLS_implementations
- rfc5246 - The Transport Layer Security (TLS) Protocol Version 1.2
- RFC 2246
https://stackoverflow.com/questions/318441/truststore-and-keystore-definitions
Java Secure Socket Extension (JSSE) Reference Guide

Recommended Pages

Enveloped Public Key Encryption (EPKE)

Enveloped Public Key Encryption (EPKE) About Enveloped Public Key Encryption (EPKE) is a encryption method of the public key schema. EPKE is the method used when securing communication on an open "...

Authentication - Basic Authentication (HTTP)

Basic Access Authentication is an Authentication mechanism from HTTP auth. Basic access authentication uses the easily reversible Base64 encoding making it non-secure unless used in conjunction with T "...

Authentication - HTTP Digest Access Authentication

Digest access authentication is an http authentication method based on authorization entry. It is intended (as a security trade-off) to replace unencrypted HTTP basic access authentication. It is not, "...

Cryptography - Key

A key is a parameter used in a cipher algorithm that determines the encryption operation (forward) and the decryption operation (backward). It's the only secret parameter that protect the anonymity of "...

Email - Encryption

/ Protection (S/MIME) in Email Message can be encrypted using: (in transit and storage) (in transit and storage) (in transit) Typ S/MIME S/MIME is a long-standing protocol which allows encrypted "...

Email - How to verify your SMTP connection and parameters (TSL/SSL) with TELNET ?

An article showing how you can verify the smtp parameters with telnet. Prerequisites You must be in the possession of your smtp parameters. The best way is to use the smtp of your ISP because you will "...

HTTP - HTTPS scheme (HTTP-over-TLS)

The https scheme represents HTTP-over-TLS HTTP is a application protocol (OSI level 7) that is build on TCP as transport layer (OSI level 3) HTTPS is essentially HTTP after the connection has been se "...

Network - Latency Calculation (Transfer time)

Rule of thumb to calculate a transfer time of a 20 Gigabyte file over an IP connection with bandwidth that is less than Gigabit. Number of raw data in bits: GBtraffic “”“” Articles Related Im "...

Network Cryptographic (SSL/TLS)

in Cryptography. The cryptographic protocols are used to encrypt the data stream between a server (for instance a web server) and a client (for instance, a browser). There is basically one (SSL, TLS) "...

Nginx - Https configuration

This article shows you how to configure SSL (https) for the nginx web server Prerequisites You should know the basic of SSL for a server: . Configuration When you got: your certificate and the priva "...

Share this page: