TLS Standards Activities

Beyond Netscape’s own “standards” activities, SSL has also been the subject of ongoing standards efforts within the Internet’s technical standards-setting bodies.

In 1995, the IETF laid the groundwork for the adoption of SSL as part of a new Internet standard for Transport Layer Security (TLS). A draft of the protocol by Tim Dierks and Christopher Allen at Consensus Development was published on March 6, 1997.

TLS is very similar to SSL 3.0, with a few important differences. Instead of using MD5, TLS uses the HMAC secure keyed message digest function. TLS also has a slightly different cipher suite from SSL 3.0.

TLS URLs

Information about the standardization history and ongoing activities can be found at:

http://lists.w3.org/Archives/Public/ietf-tls/msg00185.html: Minutes from a day-long meeting in Palo Alto, California, discussing the plans for creating the TLS working group.
http://lists.w3.org/Archives/Public/ietf-tls/msg00211.html , http://lists.w3.org/Archives/Public/ietf-tls/msg00212.html: Official minutes from the Montreal meeting at which the TLS working group was created.
http://lists.w3.org/Archives/Public/ietf-tls: Archives of the TLS working group. You can join the working group’s mailing list by sending a message to ietf-tls-request@w3.org with the word “subscribe” in the subject of the message.
http://www.consensus.com/ietf-tls/: The IETF TLS web site, including a description of the working group, history, and current drafts of the protocol.

Get Web Security and Commerce now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Web Security and Commerce by Simson Garfinkel, Gene Spafford

TLS Standards Activities

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly