Chapter 19. SSL/TLS


In this chapter we cover the SSL family of protocols, which includes SSL versions 2 and 3 and TLS. SSL version 2 is rapidly being replaced by version 3, so we will focus on SSL v3 and TLS, and only discuss v2 when its difference from v3 is interesting (such as the exportability tricks). SSL/TLS allows two parties to authenticate and establish a session key that is used to cryptographically protect the remainder of the session.

Using TCP

SSL/TLS is designed to run in a user-level process, and runs on top of TCP. As discussed in §16.1 What Layer?, running on top of layer 4 allows deployment of SSL/TLS in a user-level process rather than requiring OS changes. Using TCP (the reliable layer 4 protocol) rather than UDP ...

Get Network Security: Private Communication in a Public World, Second Edition now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.