Secure Socket Layer


Secure Socket Layer (SSL) (or LDAPS for LDAP) is a mechanism for wrapping network communication in a security layer that can be used to encrypt communication between the client and the server.

Secure Socket Layer also provides an integrity mechanism to ensure that the communication is not altered between the client and the server. The encryption is based on cryptography using certificates.

Secure Socket Layer was originally a proprietary protocol developed by Netscape Communications Corp. Secure Socket Layer has since been standardized and the name has been changed to Transport Layer Security (TLS). Nevertheless, Secure Socket Layer is still a commonly-used term to refer to this capability, and it is the term used in order to avoid confusion with the StartTLS.

Secure Socket Layer – History unveiled#

Secure Socket Layer and famous as SSL which was initially invented by Netscape Communications Corp in 1994 as a response to the growing concern over Internet security. Netscape's goal was to create an encrypted data path between a client and a server that was platform or OS agnostic.[1]

The very first version of Secure Socket Layer named SSL version 1.0 was not that successful so the Netscape Communications Corp invented its second version, version 2.0 in 1995 in the month of Feb. Just after its release, people found a number of loopholes in its architecture and hence the third version, SSL Version 3.0 came into existence in 1996.[2]

Version 2.0 found vulnerable to Man-In-The-Middle attack because it was easier to alter the preferences of the messages in 40-bit encryption. Taher A Elgamal popular as ‘father of SSL’, lead the invention of the flawless cryptographic system within SSL Version 3.0.

SSL Version 3.0 was far better than its previous versions. With 128-bit encryption, it was nearly impossible for any hacker to alter the messages or intercept it from encrypted transmission.

SSL works between the Hypertext Transfer (HTTP) protocol and Transmission Control Protocol (TCP). Securing almost every aspects of Internet, SSL is very much compatible SMTP, VoIP, FTP, LDAPS and such other protocols.

More Information#

There might be more information for this subject on one of the following: