SlideShare a Scribd company logo

Ssl and tls

Download as pptx, pdf
R
Rana assad ali

Transport Layer Security (TLS) is the successor to the Secure Sockets Layer (SSL) protocol. TLS ensures privacy and security between communicating applications and users on the internet by preventing eavesdropping, tampering, and message forgery. It works by having the client and server negotiate a cipher suite and protocol version to use to securely transmit encrypted messages. This establishes a secure channel over an unsecured network like the internet to provide confidentiality, integrity, and authentication of communications.

1 of 24
Downloaded 524 times
Transport Layer Security (TLS) Secure Socket Layer (SSL) Group Members: Roll No. Ali Akber 1406 Rana Assad Ali 1407 Qasim Ali 1425 Toseef Khadim 1427 BS(cs 4rth smester) Topic
SSL (Secure Socket Layer)
SSL History  Netscape developed The Secure Sockets Layer Protocol (SSL) in 1994, as a response to the growing concern over security on the Internet.  SSL was originally developed for securing web browser and server communications.  SSL v3.0 was specified in an Internet Draft (1996)
SSL (Secure Socket Layer)  SSL is a Secure Sockets Layer  SSL is the standard security technology for establishing an encrypted link between a web server and a browser.  This link ensures that all data passed between the web server and browsers remain private and integral  There are several versions of the SSL protocol defined. The latest version, the Transport Layer Security Protocol (TLS), is based on SSL 3.0 SSL Version 1.0 SSL Version 2.0 SSL Version 3.0
Where SSL fits? HTTP SMTP POP3 80 25 110 HTTPS SSMTP SPOP3 443 465 995 Secure Socket Layer Transport Network Data Link Port No.
SSL architecture SSL Handshake Protocol SSL change Cipher Spec Protocol SSL Alert Protocol Applications (e.g., HTTP) SSL Record Protocol TCP IP
SSL  It is the most widely known as the protocol that, coupled with HTTP, secures the Web and uses the “https” URI scheme
SSL components  SSL Handshake Protocol  Negotiation of security algorithms and parameters  Key exchange  Server authentication and optionally client authentication  SSL Record Protocol  Fragmentation  Compression  Message authentication and integrity protection  Encryption  SSL Alert Protocol  Error messages (fatal alerts and warnings)  SSL Change Cipher Spec Protocol  A single message that indicates the end of the SSL handshake
SSL Goals  Confidentiality  The data being transmitted over the Internet or network needs confidentiality. In  other words, people do not want their credit card number, account login,  passwords or personal information to be exposed over the Internet.  Integrity Protection  The data needs to remain integral, which means that once credit card details and  the amount to be charged to the credit card have been sent, a hacker sitting in  the middle cannot change the amount to be cha rged and where the funds should  go.  Authentication  Your organization needs identity assurance to authenticate itself to customers /  extranet users and ensure them they are dealing with the right organization.  Your organization needs to comply with regional, national or international  regulations on data privacy, security and integrity
Reality!!!
Transport Layer Security (TLS)
Two protocols are dominant today for providing security at the transport layer  Secure Sockets Layer (SSL) protocol  Transport Layer Security (TLS) protocol
Definition:  Transport Layer Security (TLS) was designed to provide security at the transport layer.  TLS was derived from a security protocol called Secure Sockets Layer (SSL).
Transport Layer Security (TLS)  TLS is the successor to the Secure Sockets Layer (SSL).  Transport Layer Security (TLS) is a protocol that ensures privacy between communicating applications and their users on the Internet.  Is a widely deployed protocol for securing client-server communications over the internet.  TLS is designed to prevent eavesdropping, tampering, and message forgery
Why do we need it?  TLS ensures that no third party may eavesdrop or tamper with any message.
Working of Transport Layer Security  The Client connect to server (using TCP). The client can be anything.  The Client sends a number of specifications :  Version of SSL/TLS  Which cipher suites, compression method it wants to use. Ver : TLS 1.2 CS:RSA,DSA ,RC4 COMPMETH OD
Working of Transport Layer Security  The server checks what the highest SSL/TLS version is that is supported by them both, picks a cipher suite from one of the client's options (if it supports one), and optionally picks a compression method. Client Ver : TLS 1.2  CS: RSA  DSA RC4 COMPMETH OD Server Ver : TLS 1.1 1.2 1.3 CS:RSA  COMPMETHOD
Working of Transport Layer Security  After this the basic setup is done, the server sends its certificate.  This certificate must be trusted by either the client itself or a party that the client trusts.  For example if the client trusts GeoTrust, then the client can trust the certificate from Google.com, because GeoTrust cryptographically signed Google's certificate.
Working of Transport Layer Security  Having verified the certificate and being certain this server really is who he claims to be (and not a man in the middle), a key is exchanged.  This can be a public key, a "PreMasterSecret" or simply nothing, depending on the chosen ciphersuite.
Working of Transport Layer Security  Both the server and the client can now compute the key for the symmetric encryption. 0100100001100 1010110110001 1011000110111 1 Hello
Working of Transport Layer Security  The handshake is now finished, and the two hosts can communicate securely.
Working of Transport Layer Security  To close the connection, a close notify 'alert' is used. If an attacker tries to terminate the connection by finishing the TCP connection (injecting a FIN packet), both sides will know the connection was improperly terminated. The connection cannot be compromised by this though, merely interrupted Ok. Gtg bye.. Ok see you later. TC
Benefits of TLSSSL  Encryption  TLS can help to secure transmitted data using encryption.  Interoperability  TLS works with most Web browsers, including Microsoft Internet Explorer and Netscape Navigator, and on most operating systems and Web servers.  Algorithm flexibility  TLS provides options for the authentication mechanisms, encryption algorithms, and hashing algorithms that are used during the secure session.  Ease of deployment  Many applications use TLS transparently on a Windows Server 2003 operating systems.  Ease of use  Because you implement TLS beneath the application layer, most of its operations are completely invisible to the client.
Govt municipal degree college Faisalabad
Ad

Recommended

Transport Layer Security (TLS)
Transport Layer Security (TLS)Transport Layer Security (TLS)
Transport Layer Security (TLS)
Arun Shukla
 
Radio receiver characteristics
Radio receiver characteristicsRadio receiver characteristics
Radio receiver characteristics
abhishek reddy
 
Secure Socket Layer
Secure Socket LayerSecure Socket Layer
Secure Socket Layer
Naveen Kumar
 
Plant adaptation
Plant adaptationPlant adaptation
Plant adaptation
WISDOM WEALTH INTERNATIONAL SCHOOL, TAMILNADU
 
Window11
Window11Window11
Window11
Shashi Mishra
 
Edge Computing.pptx
Edge Computing.pptxEdge Computing.pptx
Edge Computing.pptx
PriyaMaurya52
 
An Introduction to Test Driven Development
An Introduction to Test Driven Development An Introduction to Test Driven Development
An Introduction to Test Driven Development
CodeOps Technologies LLP
 
Internet of things ppt
Internet of things pptInternet of things ppt
Internet of things ppt
Dania Purnama Sari
 
Symmetric and asymmetric key
Symmetric and asymmetric keySymmetric and asymmetric key
Symmetric and asymmetric key
Triad Square InfoSec
 
Network security cryptographic hash function
Network security cryptographic hash functionNetwork security cryptographic hash function
Network security cryptographic hash function
Mijanur Rahman Milon
 
Email security
Email securityEmail security
Email security
Indrajit Sreemany
 
Transport Layer Security
Transport Layer SecurityTransport Layer Security
Transport Layer Security
Chhatra Thapa
 
Network security - OSI Security Architecture
Network security - OSI Security ArchitectureNetwork security - OSI Security Architecture
Network security - OSI Security Architecture
BharathiKrishna6
 
Transport layer security (tls)
Transport layer security (tls)Transport layer security (tls)
Transport layer security (tls)
Kalpesh Kalekar
 
Message authentication
Message authenticationMessage authentication
Message authentication
CAS
 
RSA Algorithm
RSA AlgorithmRSA Algorithm
RSA Algorithm
Srinadh Muvva
 
Web Security
Web SecurityWeb Security
Web Security
Dipika Bambhaniya
 
CRYPTOGRAPHY & NETWORK SECURITY - unit 1
CRYPTOGRAPHY & NETWORK SECURITY - unit 1CRYPTOGRAPHY & NETWORK SECURITY - unit 1
CRYPTOGRAPHY & NETWORK SECURITY - unit 1
RAMESHBABU311293
 
S/MIME
S/MIMES/MIME
S/MIME
maria azam
 
Security Attacks.ppt
Security Attacks.pptSecurity Attacks.ppt
Security Attacks.ppt
Zaheer720515
 
IP Security
IP SecurityIP Security
IP Security
Dr.Florence Dayana
 
Network security cryptography ppt
Network security cryptography pptNetwork security cryptography ppt
Network security cryptography ppt
Thushara92
 
SHA- Secure hashing algorithm
SHA- Secure hashing algorithmSHA- Secure hashing algorithm
SHA- Secure hashing algorithm
Ruchi Maurya
 
IP Security
IP SecurityIP Security
IP Security
Keshab Nath
 
Types of attacks
Types of attacksTypes of attacks
Types of attacks
Vivek Gandhi
 
Secure Socket Layer (SSL)
Secure Socket Layer (SSL)Secure Socket Layer (SSL)
Secure Socket Layer (SSL)
Samip jain
 
Web Security
Web SecurityWeb Security
Web Security
Dr.Florence Dayana
 
Wireless security presentation
Wireless security presentationWireless security presentation
Wireless security presentation
Muhammad Zia
 
What is TLS/SSL?
What is TLS/SSL? What is TLS/SSL?
What is TLS/SSL?
Shehzad Imran
 
CN
CNCN
CN
sowfi
 
Ad

More Related Content

What's hot (20)

Symmetric and asymmetric key
Symmetric and asymmetric keySymmetric and asymmetric key
Symmetric and asymmetric key
Triad Square InfoSec
 
Network security cryptographic hash function
Network security cryptographic hash functionNetwork security cryptographic hash function
Network security cryptographic hash function
Mijanur Rahman Milon
 
Email security
Email securityEmail security
Email security
Indrajit Sreemany
 
Transport Layer Security
Transport Layer SecurityTransport Layer Security
Transport Layer Security
Chhatra Thapa
 
Network security - OSI Security Architecture
Network security - OSI Security ArchitectureNetwork security - OSI Security Architecture
Network security - OSI Security Architecture
BharathiKrishna6
 
Transport layer security (tls)
Transport layer security (tls)Transport layer security (tls)
Transport layer security (tls)
Kalpesh Kalekar
 
Message authentication
Message authenticationMessage authentication
Message authentication
CAS
 
RSA Algorithm
RSA AlgorithmRSA Algorithm
RSA Algorithm
Srinadh Muvva
 
Web Security
Web SecurityWeb Security
Web Security
Dipika Bambhaniya
 
CRYPTOGRAPHY & NETWORK SECURITY - unit 1
CRYPTOGRAPHY & NETWORK SECURITY - unit 1CRYPTOGRAPHY & NETWORK SECURITY - unit 1
CRYPTOGRAPHY & NETWORK SECURITY - unit 1
RAMESHBABU311293
 
S/MIME
S/MIMES/MIME
S/MIME
maria azam
 
Security Attacks.ppt
Security Attacks.pptSecurity Attacks.ppt
Security Attacks.ppt
Zaheer720515
 
IP Security
IP SecurityIP Security
IP Security
Dr.Florence Dayana
 
Network security cryptography ppt
Network security cryptography pptNetwork security cryptography ppt
Network security cryptography ppt
Thushara92
 
SHA- Secure hashing algorithm
SHA- Secure hashing algorithmSHA- Secure hashing algorithm
SHA- Secure hashing algorithm
Ruchi Maurya
 
IP Security
IP SecurityIP Security
IP Security
Keshab Nath
 
Types of attacks
Types of attacksTypes of attacks
Types of attacks
Vivek Gandhi
 
Secure Socket Layer (SSL)
Secure Socket Layer (SSL)Secure Socket Layer (SSL)
Secure Socket Layer (SSL)
Samip jain
 
Web Security
Web SecurityWeb Security
Web Security
Dr.Florence Dayana
 
Wireless security presentation
Wireless security presentationWireless security presentation
Wireless security presentation
Muhammad Zia
 
Symmetric and asymmetric key
Symmetric and asymmetric keySymmetric and asymmetric key
Symmetric and asymmetric key
Triad Square InfoSec
 
Network security cryptographic hash function
Network security cryptographic hash functionNetwork security cryptographic hash function
Network security cryptographic hash function
Mijanur Rahman Milon
 
Email security
Email securityEmail security
Email security
Indrajit Sreemany
 
Transport Layer Security
Transport Layer SecurityTransport Layer Security
Transport Layer Security
Chhatra Thapa
 
Network security - OSI Security Architecture
Network security - OSI Security ArchitectureNetwork security - OSI Security Architecture
Network security - OSI Security Architecture
BharathiKrishna6
 
Transport layer security (tls)
Transport layer security (tls)Transport layer security (tls)
Transport layer security (tls)
Kalpesh Kalekar
 
Message authentication
Message authenticationMessage authentication
Message authentication
CAS
 
RSA Algorithm
RSA AlgorithmRSA Algorithm
RSA Algorithm
Srinadh Muvva
 
Web Security
Web SecurityWeb Security
Web Security
Dipika Bambhaniya
 
CRYPTOGRAPHY & NETWORK SECURITY - unit 1
CRYPTOGRAPHY & NETWORK SECURITY - unit 1CRYPTOGRAPHY & NETWORK SECURITY - unit 1
CRYPTOGRAPHY & NETWORK SECURITY - unit 1
RAMESHBABU311293
 
S/MIME
S/MIMES/MIME
S/MIME
maria azam
 
Security Attacks.ppt
Security Attacks.pptSecurity Attacks.ppt
Security Attacks.ppt
Zaheer720515
 
IP Security
IP SecurityIP Security
IP Security
Dr.Florence Dayana
 
Network security cryptography ppt
Network security cryptography pptNetwork security cryptography ppt
Network security cryptography ppt
Thushara92
 
SHA- Secure hashing algorithm
SHA- Secure hashing algorithmSHA- Secure hashing algorithm
SHA- Secure hashing algorithm
Ruchi Maurya
 
IP Security
IP SecurityIP Security
IP Security
Keshab Nath
 
Types of attacks
Types of attacksTypes of attacks
Types of attacks
Vivek Gandhi
 
Secure Socket Layer (SSL)
Secure Socket Layer (SSL)Secure Socket Layer (SSL)
Secure Socket Layer (SSL)
Samip jain
 
Web Security
Web SecurityWeb Security
Web Security
Dr.Florence Dayana
 
Wireless security presentation
Wireless security presentationWireless security presentation
Wireless security presentation
Muhammad Zia
 

Similar to Ssl and tls (20)

What is TLS/SSL?
What is TLS/SSL? What is TLS/SSL?
What is TLS/SSL?
Shehzad Imran
 
CN
CNCN
CN
sowfi
 
Sequere socket Layer
Sequere socket LayerSequere socket Layer
Sequere socket Layer
Raghavendra Rao
 
SSL.pptx
SSL.pptxSSL.pptx
SSL.pptx
hammadhassan9507
 
Unit 6
Unit 6Unit 6
Unit 6
Vinod Kumar Gorrepati
 
SSL VS TLS.pptx
SSL VS TLS.pptxSSL VS TLS.pptx
SSL VS TLS.pptx
Vignesh kumar
 
Transport Layer Security
Transport Layer Security Transport Layer Security
Transport Layer Security
Ibrahiem Mohammed
 
Vulnerabilities of the SSL/TLS Protocol
Vulnerabilities of the SSL/TLS ProtocolVulnerabilities of the SSL/TLS Protocol
Vulnerabilities of the SSL/TLS Protocol
csandit
 
VULNERABILITIES OF THE SSL/TLS PROTOCOL
VULNERABILITIES OF THE SSL/TLS PROTOCOLVULNERABILITIES OF THE SSL/TLS PROTOCOL
VULNERABILITIES OF THE SSL/TLS PROTOCOL
cscpconf
 
Comparative Analysis of Open-SSL Vulnerabilities & Heartbleed Exploit Detection
Comparative Analysis of Open-SSL Vulnerabilities & Heartbleed Exploit DetectionComparative Analysis of Open-SSL Vulnerabilities & Heartbleed Exploit Detection
Comparative Analysis of Open-SSL Vulnerabilities & Heartbleed Exploit Detection
CSCJournals
 
SSL Secure socket layer
SSL Secure socket layerSSL Secure socket layer
SSL Secure socket layer
Ahmed Elnaggar
 
secure socket layer
secure socket layersecure socket layer
secure socket layer
Amar Shah
 
Differences to Know Between SSL & TLS certificate .pdf
Differences to Know Between SSL & TLS certificate .pdfDifferences to Know Between SSL & TLS certificate .pdf
Differences to Know Between SSL & TLS certificate .pdf
Host It Smart
 
Ssl https
Ssl httpsSsl https
Ssl https
Andrada Boldis
 
WEB SECURITY CRYPTOGRAPHY PPTeriu8t erhiut.ppt
WEB SECURITY CRYPTOGRAPHY PPTeriu8t erhiut.pptWEB SECURITY CRYPTOGRAPHY PPTeriu8t erhiut.ppt
WEB SECURITY CRYPTOGRAPHY PPTeriu8t erhiut.ppt
SonukumarRawat
 
Details about the SSL Certificate
Details about the SSL CertificateDetails about the SSL Certificate
Details about the SSL Certificate
CheapSSLUSA
 
Vtu network security(10 ec832) unit 5 notes.
Vtu network security(10 ec832) unit 5 notes.Vtu network security(10 ec832) unit 5 notes.
Vtu network security(10 ec832) unit 5 notes.
Jayanth Dwijesh H P
 
Secure socket layer
Secure socket layerSecure socket layer
Secure socket layer
Emprovise
 
Transport layer security.ppt
Transport layer security.pptTransport layer security.ppt
Transport layer security.ppt
ImXaib
 
SECURE SOCKET LAYER ( WEB SECURITY )
SECURE SOCKET LAYER ( WEB SECURITY )SECURE SOCKET LAYER ( WEB SECURITY )
SECURE SOCKET LAYER ( WEB SECURITY )
Monodip Singha Roy
 
What is TLS/SSL?
What is TLS/SSL? What is TLS/SSL?
What is TLS/SSL?
Shehzad Imran
 
CN
CNCN
CN
sowfi
 
Sequere socket Layer
Sequere socket LayerSequere socket Layer
Sequere socket Layer
Raghavendra Rao
 
SSL.pptx
SSL.pptxSSL.pptx
SSL.pptx
hammadhassan9507
 
Unit 6
Unit 6Unit 6
Unit 6
Vinod Kumar Gorrepati
 
SSL VS TLS.pptx
SSL VS TLS.pptxSSL VS TLS.pptx
SSL VS TLS.pptx
Vignesh kumar
 
Transport Layer Security
Transport Layer Security Transport Layer Security
Transport Layer Security
Ibrahiem Mohammed
 
Vulnerabilities of the SSL/TLS Protocol
Vulnerabilities of the SSL/TLS ProtocolVulnerabilities of the SSL/TLS Protocol
Vulnerabilities of the SSL/TLS Protocol
csandit
 
VULNERABILITIES OF THE SSL/TLS PROTOCOL
VULNERABILITIES OF THE SSL/TLS PROTOCOLVULNERABILITIES OF THE SSL/TLS PROTOCOL
VULNERABILITIES OF THE SSL/TLS PROTOCOL
cscpconf
 
Comparative Analysis of Open-SSL Vulnerabilities & Heartbleed Exploit Detection
Comparative Analysis of Open-SSL Vulnerabilities & Heartbleed Exploit DetectionComparative Analysis of Open-SSL Vulnerabilities & Heartbleed Exploit Detection
Comparative Analysis of Open-SSL Vulnerabilities & Heartbleed Exploit Detection
CSCJournals
 
SSL Secure socket layer
SSL Secure socket layerSSL Secure socket layer
SSL Secure socket layer
Ahmed Elnaggar
 
secure socket layer
secure socket layersecure socket layer
secure socket layer
Amar Shah
 
Differences to Know Between SSL & TLS certificate .pdf
Differences to Know Between SSL & TLS certificate .pdfDifferences to Know Between SSL & TLS certificate .pdf
Differences to Know Between SSL & TLS certificate .pdf
Host It Smart
 
Ssl https
Ssl httpsSsl https
Ssl https
Andrada Boldis
 
WEB SECURITY CRYPTOGRAPHY PPTeriu8t erhiut.ppt
WEB SECURITY CRYPTOGRAPHY PPTeriu8t erhiut.pptWEB SECURITY CRYPTOGRAPHY PPTeriu8t erhiut.ppt
WEB SECURITY CRYPTOGRAPHY PPTeriu8t erhiut.ppt
SonukumarRawat
 
Details about the SSL Certificate
Details about the SSL CertificateDetails about the SSL Certificate
Details about the SSL Certificate
CheapSSLUSA
 
Vtu network security(10 ec832) unit 5 notes.
Vtu network security(10 ec832) unit 5 notes.Vtu network security(10 ec832) unit 5 notes.
Vtu network security(10 ec832) unit 5 notes.
Jayanth Dwijesh H P
 
Secure socket layer
Secure socket layerSecure socket layer
Secure socket layer
Emprovise
 
Transport layer security.ppt
Transport layer security.pptTransport layer security.ppt
Transport layer security.ppt
ImXaib
 
SECURE SOCKET LAYER ( WEB SECURITY )
SECURE SOCKET LAYER ( WEB SECURITY )SECURE SOCKET LAYER ( WEB SECURITY )
SECURE SOCKET LAYER ( WEB SECURITY )
Monodip Singha Roy
 
Ad

Recently uploaded (20)

ML_Unit_VI_DEEP LEARNING_Introduction to ANN.pdf
ML_Unit_VI_DEEP LEARNING_Introduction to ANN.pdfML_Unit_VI_DEEP LEARNING_Introduction to ANN.pdf
ML_Unit_VI_DEEP LEARNING_Introduction to ANN.pdf
rameshwarchintamani
 
twin tower attack 2001 new york city
twin tower attack 2001 new york citytwin tower attack 2001 new york city
twin tower attack 2001 new york city
harishreemavs
 
Working with USDOT UTCs: From Conception to Implementation
Working with USDOT UTCs: From Conception to ImplementationWorking with USDOT UTCs: From Conception to Implementation
Working with USDOT UTCs: From Conception to Implementation
Alabama Transportation Assistance Program
 
Understanding Structural Loads and Load Paths
Understanding Structural Loads and Load PathsUnderstanding Structural Loads and Load Paths
Understanding Structural Loads and Load Paths
University of Kirkuk
 
Analog electronic circuits with some imp
Analog electronic circuits with some impAnalog electronic circuits with some imp
Analog electronic circuits with some imp
KarthikTG7
 
Prediction of Flexural Strength of Concrete Produced by Using Pozzolanic Mate...
Prediction of Flexural Strength of Concrete Produced by Using Pozzolanic Mate...Prediction of Flexural Strength of Concrete Produced by Using Pozzolanic Mate...
Prediction of Flexural Strength of Concrete Produced by Using Pozzolanic Mate...
Journal of Soft Computing in Civil Engineering
 
introduction technology technology tec.pptx
introduction technology technology tec.pptxintroduction technology technology tec.pptx
introduction technology technology tec.pptx
Iftikhar70
 
Control Methods of Noise Pollutions.pptx
Control Methods of Noise Pollutions.pptxControl Methods of Noise Pollutions.pptx
Control Methods of Noise Pollutions.pptx
vvsasane
 
Transport modelling at SBB, presentation at EPFL in 2025
Transport modelling at SBB, presentation at EPFL in 2025Transport modelling at SBB, presentation at EPFL in 2025
Transport modelling at SBB, presentation at EPFL in 2025
Antonin Danalet
 
SICPA: Fabien Keller - background introduction
SICPA: Fabien Keller - background introductionSICPA: Fabien Keller - background introduction
SICPA: Fabien Keller - background introduction
fabienklr
 
Jacob Murphy Australia - Excels In Optimizing Software Applications
Jacob Murphy Australia - Excels In Optimizing Software ApplicationsJacob Murphy Australia - Excels In Optimizing Software Applications
Jacob Murphy Australia - Excels In Optimizing Software Applications
Jacob Murphy Australia
 
Routing Riverdale - A New Bus Connection
Routing Riverdale - A New Bus ConnectionRouting Riverdale - A New Bus Connection
Routing Riverdale - A New Bus Connection
jzb7232
 
How to Buy Snapchat Account A Step-by-Step Guide.pdf
How to Buy Snapchat Account A Step-by-Step Guide.pdfHow to Buy Snapchat Account A Step-by-Step Guide.pdf
How to Buy Snapchat Account A Step-by-Step Guide.pdf
jamedlimmk
 
Design of Variable Depth Single-Span Post.pdf
Design of Variable Depth Single-Span Post.pdfDesign of Variable Depth Single-Span Post.pdf
Design of Variable Depth Single-Span Post.pdf
Kamel Farid
 
PRIZ Academy - Functional Modeling In Action with PRIZ.pdf
PRIZ Academy - Functional Modeling In Action with PRIZ.pdfPRIZ Academy - Functional Modeling In Action with PRIZ.pdf
PRIZ Academy - Functional Modeling In Action with PRIZ.pdf
PRIZ Guru
 
Evonik Overview Visiomer Specialty Methacrylates.pdf
Evonik Overview Visiomer Specialty Methacrylates.pdfEvonik Overview Visiomer Specialty Methacrylates.pdf
Evonik Overview Visiomer Specialty Methacrylates.pdf
szhang13
 
Nanometer Metal-Organic-Framework Literature Comparison
Nanometer Metal-Organic-Framework Literature ComparisonNanometer Metal-Organic-Framework Literature Comparison
Nanometer Metal-Organic-Framework Literature Comparison
Chris Harding
 
Water Industry Process Automation & Control Monthly May 2025
Water Industry Process Automation & Control Monthly May 2025Water Industry Process Automation & Control Monthly May 2025
Water Industry Process Automation & Control Monthly May 2025
Water Industry Process Automation & Control
 
Machine Learning basics POWERPOINT PRESENETATION
Machine Learning basics POWERPOINT PRESENETATIONMachine Learning basics POWERPOINT PRESENETATION
Machine Learning basics POWERPOINT PRESENETATION
DarrinBright1
 
Mode-Wise Corridor Level Travel-Time Estimation Using Machine Learning Models
Mode-Wise Corridor Level Travel-Time Estimation Using Machine Learning ModelsMode-Wise Corridor Level Travel-Time Estimation Using Machine Learning Models
Mode-Wise Corridor Level Travel-Time Estimation Using Machine Learning Models
Journal of Soft Computing in Civil Engineering
 
ML_Unit_VI_DEEP LEARNING_Introduction to ANN.pdf
ML_Unit_VI_DEEP LEARNING_Introduction to ANN.pdfML_Unit_VI_DEEP LEARNING_Introduction to ANN.pdf
ML_Unit_VI_DEEP LEARNING_Introduction to ANN.pdf
rameshwarchintamani
 
twin tower attack 2001 new york city
twin tower attack 2001 new york citytwin tower attack 2001 new york city
twin tower attack 2001 new york city
harishreemavs
 
Working with USDOT UTCs: From Conception to Implementation
Working with USDOT UTCs: From Conception to ImplementationWorking with USDOT UTCs: From Conception to Implementation
Working with USDOT UTCs: From Conception to Implementation
Alabama Transportation Assistance Program
 
Understanding Structural Loads and Load Paths
Understanding Structural Loads and Load PathsUnderstanding Structural Loads and Load Paths
Understanding Structural Loads and Load Paths
University of Kirkuk
 
Analog electronic circuits with some imp
Analog electronic circuits with some impAnalog electronic circuits with some imp
Analog electronic circuits with some imp
KarthikTG7
 
Prediction of Flexural Strength of Concrete Produced by Using Pozzolanic Mate...
Prediction of Flexural Strength of Concrete Produced by Using Pozzolanic Mate...Prediction of Flexural Strength of Concrete Produced by Using Pozzolanic Mate...
Prediction of Flexural Strength of Concrete Produced by Using Pozzolanic Mate...
Journal of Soft Computing in Civil Engineering
 
introduction technology technology tec.pptx
introduction technology technology tec.pptxintroduction technology technology tec.pptx
introduction technology technology tec.pptx
Iftikhar70
 
Control Methods of Noise Pollutions.pptx
Control Methods of Noise Pollutions.pptxControl Methods of Noise Pollutions.pptx
Control Methods of Noise Pollutions.pptx
vvsasane
 
Transport modelling at SBB, presentation at EPFL in 2025
Transport modelling at SBB, presentation at EPFL in 2025Transport modelling at SBB, presentation at EPFL in 2025
Transport modelling at SBB, presentation at EPFL in 2025
Antonin Danalet
 
SICPA: Fabien Keller - background introduction
SICPA: Fabien Keller - background introductionSICPA: Fabien Keller - background introduction
SICPA: Fabien Keller - background introduction
fabienklr
 
Jacob Murphy Australia - Excels In Optimizing Software Applications
Jacob Murphy Australia - Excels In Optimizing Software ApplicationsJacob Murphy Australia - Excels In Optimizing Software Applications
Jacob Murphy Australia - Excels In Optimizing Software Applications
Jacob Murphy Australia
 
Routing Riverdale - A New Bus Connection
Routing Riverdale - A New Bus ConnectionRouting Riverdale - A New Bus Connection
Routing Riverdale - A New Bus Connection
jzb7232
 
How to Buy Snapchat Account A Step-by-Step Guide.pdf
How to Buy Snapchat Account A Step-by-Step Guide.pdfHow to Buy Snapchat Account A Step-by-Step Guide.pdf
How to Buy Snapchat Account A Step-by-Step Guide.pdf
jamedlimmk
 
Design of Variable Depth Single-Span Post.pdf
Design of Variable Depth Single-Span Post.pdfDesign of Variable Depth Single-Span Post.pdf
Design of Variable Depth Single-Span Post.pdf
Kamel Farid
 
PRIZ Academy - Functional Modeling In Action with PRIZ.pdf
PRIZ Academy - Functional Modeling In Action with PRIZ.pdfPRIZ Academy - Functional Modeling In Action with PRIZ.pdf
PRIZ Academy - Functional Modeling In Action with PRIZ.pdf
PRIZ Guru
 
Evonik Overview Visiomer Specialty Methacrylates.pdf
Evonik Overview Visiomer Specialty Methacrylates.pdfEvonik Overview Visiomer Specialty Methacrylates.pdf
Evonik Overview Visiomer Specialty Methacrylates.pdf
szhang13
 
Nanometer Metal-Organic-Framework Literature Comparison
Nanometer Metal-Organic-Framework Literature ComparisonNanometer Metal-Organic-Framework Literature Comparison
Nanometer Metal-Organic-Framework Literature Comparison
Chris Harding
 
Water Industry Process Automation & Control Monthly May 2025
Water Industry Process Automation & Control Monthly May 2025Water Industry Process Automation & Control Monthly May 2025
Water Industry Process Automation & Control Monthly May 2025
Water Industry Process Automation & Control
 
Machine Learning basics POWERPOINT PRESENETATION
Machine Learning basics POWERPOINT PRESENETATIONMachine Learning basics POWERPOINT PRESENETATION
Machine Learning basics POWERPOINT PRESENETATION
DarrinBright1
 
Mode-Wise Corridor Level Travel-Time Estimation Using Machine Learning Models
Mode-Wise Corridor Level Travel-Time Estimation Using Machine Learning ModelsMode-Wise Corridor Level Travel-Time Estimation Using Machine Learning Models
Mode-Wise Corridor Level Travel-Time Estimation Using Machine Learning Models
Journal of Soft Computing in Civil Engineering
 
Ad

Ssl and tls

  • 1. Transport Layer Security (TLS) Secure Socket Layer (SSL) Group Members: Roll No. Ali Akber 1406 Rana Assad Ali 1407 Qasim Ali 1425 Toseef Khadim 1427 BS(cs 4rth smester) Topic
  • 3. SSL History  Netscape developed The Secure Sockets Layer Protocol (SSL) in 1994, as a response to the growing concern over security on the Internet.  SSL was originally developed for securing web browser and server communications.  SSL v3.0 was specified in an Internet Draft (1996)
  • 4. SSL (Secure Socket Layer)  SSL is a Secure Sockets Layer  SSL is the standard security technology for establishing an encrypted link between a web server and a browser.  This link ensures that all data passed between the web server and browsers remain private and integral  There are several versions of the SSL protocol defined. The latest version, the Transport Layer Security Protocol (TLS), is based on SSL 3.0 SSL Version 1.0 SSL Version 2.0 SSL Version 3.0
  • 5. Where SSL fits? HTTP SMTP POP3 80 25 110 HTTPS SSMTP SPOP3 443 465 995 Secure Socket Layer Transport Network Data Link Port No.
  • 6. SSL architecture SSL Handshake Protocol SSL change Cipher Spec Protocol SSL Alert Protocol Applications (e.g., HTTP) SSL Record Protocol TCP IP
  • 7. SSL  It is the most widely known as the protocol that, coupled with HTTP, secures the Web and uses the “https” URI scheme
  • 8. SSL components  SSL Handshake Protocol  Negotiation of security algorithms and parameters  Key exchange  Server authentication and optionally client authentication  SSL Record Protocol  Fragmentation  Compression  Message authentication and integrity protection  Encryption  SSL Alert Protocol  Error messages (fatal alerts and warnings)  SSL Change Cipher Spec Protocol  A single message that indicates the end of the SSL handshake
  • 9. SSL Goals  Confidentiality  The data being transmitted over the Internet or network needs confidentiality. In  other words, people do not want their credit card number, account login,  passwords or personal information to be exposed over the Internet.  Integrity Protection  The data needs to remain integral, which means that once credit card details and  the amount to be charged to the credit card have been sent, a hacker sitting in  the middle cannot change the amount to be cha rged and where the funds should  go.  Authentication  Your organization needs identity assurance to authenticate itself to customers /  extranet users and ensure them they are dealing with the right organization.  Your organization needs to comply with regional, national or international  regulations on data privacy, security and integrity
  • 12. Two protocols are dominant today for providing security at the transport layer  Secure Sockets Layer (SSL) protocol  Transport Layer Security (TLS) protocol
  • 13. Definition:  Transport Layer Security (TLS) was designed to provide security at the transport layer.  TLS was derived from a security protocol called Secure Sockets Layer (SSL).
  • 14. Transport Layer Security (TLS)  TLS is the successor to the Secure Sockets Layer (SSL).  Transport Layer Security (TLS) is a protocol that ensures privacy between communicating applications and their users on the Internet.  Is a widely deployed protocol for securing client-server communications over the internet.  TLS is designed to prevent eavesdropping, tampering, and message forgery
  • 15. Why do we need it?  TLS ensures that no third party may eavesdrop or tamper with any message.
  • 16. Working of Transport Layer Security  The Client connect to server (using TCP). The client can be anything.  The Client sends a number of specifications :  Version of SSL/TLS  Which cipher suites, compression method it wants to use. Ver : TLS 1.2 CS:RSA,DSA ,RC4 COMPMETH OD
  • 17. Working of Transport Layer Security  The server checks what the highest SSL/TLS version is that is supported by them both, picks a cipher suite from one of the client's options (if it supports one), and optionally picks a compression method. Client Ver : TLS 1.2  CS: RSA  DSA RC4 COMPMETH OD Server Ver : TLS 1.1 1.2 1.3 CS:RSA  COMPMETHOD
  • 18. Working of Transport Layer Security  After this the basic setup is done, the server sends its certificate.  This certificate must be trusted by either the client itself or a party that the client trusts.  For example if the client trusts GeoTrust, then the client can trust the certificate from Google.com, because GeoTrust cryptographically signed Google's certificate.
  • 19. Working of Transport Layer Security  Having verified the certificate and being certain this server really is who he claims to be (and not a man in the middle), a key is exchanged.  This can be a public key, a "PreMasterSecret" or simply nothing, depending on the chosen ciphersuite.
  • 20. Working of Transport Layer Security  Both the server and the client can now compute the key for the symmetric encryption. 0100100001100 1010110110001 1011000110111 1 Hello
  • 21. Working of Transport Layer Security  The handshake is now finished, and the two hosts can communicate securely.
  • 22. Working of Transport Layer Security  To close the connection, a close notify 'alert' is used. If an attacker tries to terminate the connection by finishing the TCP connection (injecting a FIN packet), both sides will know the connection was improperly terminated. The connection cannot be compromised by this though, merely interrupted Ok. Gtg bye.. Ok see you later. TC
  • 23. Benefits of TLSSSL  Encryption  TLS can help to secure transmitted data using encryption.  Interoperability  TLS works with most Web browsers, including Microsoft Internet Explorer and Netscape Navigator, and on most operating systems and Web servers.  Algorithm flexibility  TLS provides options for the authentication mechanisms, encryption algorithms, and hashing algorithms that are used during the secure session.  Ease of deployment  Many applications use TLS transparently on a Windows Server 2003 operating systems.  Ease of use  Because you implement TLS beneath the application layer, most of its operations are completely invisible to the client.
  • 24. Govt municipal degree college Faisalabad

Editor's Notes

  • #14: The first difference is the version number (major and minor). The current version of SSL is 3.0; the current version of TLS is 1.0. In other words, SSLv3.0 is compatible with TLSv1.0. Another minor difference between SSL and TLS is the lack of support for the Fortezza method. TLS does not support Fortezza for key exchange or for encryption/decryption. “standardized” by IETF RFC2246.
  翻译: