TLS, a standardized version of SSL

SSL was developed by Netscape Communications Corporation in 1994 for secure Internet communication. Later, in 1999, Internet Engineering Task Force (IETF) defined TLS as a standard protocol, which will allow secure transactions over the World Wide Web.

TLS is widely recognized as the protocol that provides HTTPS for Internet transactions between Web browsers and Web servers. TLS can also be used for other application level protocols, such as File Transfer Protocol (FTP) and Simple Mail Transfer Protocol (SMTP).

Improvements of TLS over SSL:

  1. The Hashing for Message Authentication Code (HMAC) algorithm replaced the SSL’s Message Authentication Code (MAC) algorithm.
  2. In TLS, it is not necessary to include certificates all the way back to the root CA.
  3. TLS is standardized by Request for Comments (RFC).
  4. New alert messages are added.
  5. Fortezza algorithms are not included in the TLS RFC because they are not open for public review.

Leave a Reply

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>