August 2000
Intermediate to advanced
800 pages
21h 5m
English
Content preview from Microsoft® Windows® 2000 Security HandbookBecome an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
Start your free trial
Understanding SSL/TLS
In this chapter so far, I have discussed how Windows 2000 authenticates using NTLM. But you can also use SSL as you move across the Internet and get involved with electronic commerce. What is SSL/TLS (Secure Sockets Layer/Transport Layer Security), and how does itwork?
SSL was first introduced around 1994 with the Netscape Navigator browser. That same year, the S-HTTP protocol was introduced by a group called CommerceNet. The SSL protocol works at a lower level of the network than S-HTTP and can therefore be used to encrypt many different kinds of connections and not just HTTP.
SSL operates at the TCP/IP transport layer (offering transport-layer security), just below the application-specific type protocols such as HTTP