More Related Content
Similar to SSL-TLS HTTPS (20)
SSL-TLS HTTPS
- 2. A bite of SSL/TLS
Transport Layer Protection
SPDY?
START TLS?
Diameter?
- 4. HTTP + SSL = HTTPS
HTTP
传输协议,具体的通信由
TCP层负责
Application layer on TCP
SSL
SSL也是在TCP层上实现
的,可以视作一个安全中间件
security-middleware
HTTPS
是server端通
过增加握手次数
实现对HTTP通
信加密的过程
Handshake
+ Encryption
- 5. Difference of HTTPS
● port 80 -> 443 (usually)
● raw data stream -> fragments in protection
independently
● browser/client directly reader -> decrypted
and verified
● HTTP header -> SSL version added
● Content type: application_data, alert,
handshake and change_cipher_spec