Shulou(Shulou.com)06/01 Report--

The port number can be considered as the entrance and exit of communication between machine equipment and external communication. The port number of http is 80, so do you know what the port number of https certificate is? Today's editor will introduce it in detail.

What is the https certificate port?

https certificate deployment installation, the network server must be associated with the port number, generally: port 443. After configuration, the firewall must be configured to allow port number 443, and the cloud host must log in to the service platform to configure the security group.

What does the port of https certificate affect?

https is a secure communication channel developed based on HTTP to exchange information content between customer computers and cluster servers. It uses the Security Sockets Layer (SSL) for the exchange of information content, which is simply a secure version of HTTP.

This was developed by Netscape and built into its computer browser to perform the actual manipulation of statistical data reduction and stress relief, and transmitted back to the Internet. HTTPS actually uses Netscape's full socket layer (SSL) security as a sublayer of the HTTP network layer. (HTTPS uses port number 443 instead of port number 80 to communicate with TCP/IP, as HTTP does.) SSL uses 40-bit keywords as RC4 stream encryption technology, which is suitable for data encryption of information. HTTPS and SSL apply X.509 digital authentication, allowing customers to determine who the sender is if required.

Difference between HTTPS and HTTP:

https protocol book must go to ca to apply for certificate, usually completely free qualification certificate very few, must pay fees.

http is a dynamic web page transmission protocol, the information content is encrypted text transmission, https is a ssl encryption transmission protocol with security factors

http and https applications are completely different interface methods with different port numbers, the former is 80, the latter is 443.

http connections are very simple and stateless

HTTPS protocol is a network layer protocol built by SSL+HTTP protocol that can carry out encrypted transmission and authentication. It is more secure than http protocol.

HTTPS handles issues:

1 . Trust server conundrum. For https servers, be sure to apply for a certificate from CA confirming the primary use of the web server. Change credentials only with matching servers when customers trust secondary servers. Therefore, at this stage, all banking websites, an important part of the use of https. The customer trusts the server by trusting the certificate. I think that's inefficient, but financial institutions are more focused on security. This point has no practical significance for people, people's server , choose the qualification certificate whether their own issue or from the masses of regional issue, mobile phone client is all their own, so people will undoubtedly trust the server.

2 . Leaking and tampering of statistical data throughout the communication process

1. Usually https in the actual sense means that the server has a qualification certificate.

A) The key objective is to ensure that the server is what it claims to be. This is the same as the first one.

b) All communication between the server and the mobile client is encrypted.

i. In fact, it is the mobile client that creates a symmetric key, and the key is exchanged according to the server qualification certificate. The whole process of waving a hand in the usual practical sense.

ii. Add up all the information content coming and going is all data encryption. Third-party platform even if captured, also has no practical significance. Since he doesn't have the key. Maybe tampering wouldn't make any sense.

2. A small number of mobile phone client has provisions of the situation, will require mobile phone client must also have a certificate.

a) Here client credentials, I think are close to expressing private information at the time, except login name/password, there is a CA verified real identity. Should be my qualification certificate usually on others can not simulate, all that can be very deep to determine their true identity.

b) At this stage very few personal banking standard version is this practice, the actual qualification certificate will be to take a mobile USB drive as a backup file plasmid vector.

HTTPS must be complex.

a) The original simple http protocol, 1 get1 response. Because https is necessary to return keys and determine encryption techniques. A single wave must go 6/7 times.

i. In all applications, excessive round trips undoubtedly harm the property.

b) Next is the actual http protocol, each time there is no response or request, all mobile phone client and server to do data encryption/decryption of the content of the application.

i. Although symmetric encryption/decryption efficiency is relatively high, but still consume too much CPU, so there is a professional SSL integrated ic. If CPU power is low, it will undoubtedly reduce features, and thus can not serve a large number of requests.

ii. The harm of information quantity after data encryption.

1. This I checked with 128bit RC2, the total number of encrypted data is basically consistent with the data before encryption.

To sum up, the port of https certificate is 443, what factors will affect this port, Xiaobian also made a detailed introduction above, I hope you will like it.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.