Overview#

Server Name Indication (SNI) is an TLS extension computer networking protocol by which a client indicates which hostname it is attempting to connect to at the start of the handshaking process.

Server Name Indication is described in RFC 6066.

This allows a server to present multiple certificates on the same IP address and TCP port number and hence allows multiple secure (HTTPS) websites (or any other Service over TLS) to be served off the same IP address without requiring all those sites to use the same certificate. It is the conceptual equivalent to HTTP/1.1 name-based virtual hosting, but for HTTPS.

To make use of Server Name Indication practical, the vast majority of users must use web browsers that implement it. Users whose browsers do not implement Server Name Indication are presented with a default certificate and hence are likely to receive certificate warnings, unless the server is equipped with a wildcard certificate that matches the name of the website.

More Information#

There might be more information for this subject on one of the following:

Add new attachment

Only authorized users are allowed to upload new attachments.
« This page (revision-4) was last changed on 04-Nov-2015 05:02 by jim