HTTPS and TLS (SSL 3+)

TLS is Next Generation SSL

When people talk about SSL(Secure Socket Layers) protocol, what they actually mean is TLS(Transport Layer Security). TLS is the successor and the new name of SSL.

SSL 3.1 is actually TLS 1.0. TLS 1.1 is SSL 3.2 and TLS 1.2 is SSL 3.3. TLS 1.3 is the latest version proposed on 21 March 2018.

Now that you know these, let’s get into TLS.

What is TLS?

TLS is a protocol operating directly on top of TCP layer. Although, there are implementations of it for Datagram Based Protocols like UDP. By working on TCP layer, protocols on higher level layers(Application layer …) are left unchanged while still being secure. Below TLS layer, HTTP is identical to HTTPS.

OSI Model

When you use TLS properly on your connections, attackers can only see which IP and port you are connecting, roughly how much data you are sending and what kind of encryption algorithm and compression are being used.
Continue reading