Shulou(Shulou.com)06/01 Report--

Today, the editor is to share with you about the principle of SSL connection introduction, I believe that many people do not understand, in order to let you know more about the principle of SSL connection, so to sum up the following content, let's look down. I'm sure you'll get something.

I. the concept of SSL

SSL is an acronym for secure socket layer, which is a technology that encrypts communication between users and websites. This encryption ensures that important data, such as usernames, passwords, and credit card information, is sent from the user to the site without the risk of being intercepted.

For ordinary people, you don't need to understand the concept of SSL, but you only need to know that websites that use SSL protocols are more secure than those that don't use SSL protocols.

2. What are the types of SSL certificates?

There are three main types of ssl certificates: EV, OV and DV certificates, and the effects of different certificate types are also different.

EV SSL certificate OV SSL certificate DV SSL certificate suitable for government, finance and other units suitable for small and medium-sized enterprises, suitable for personal websites, only display pages and other customer domain name types support multi-domain support multi-domain

Support for wildcard

Support for IP certificates support for multiple domains

Support wildcard encryption strength 256-bit encryption

256-bit encryption

256-bit encryption

The issuing time is three to five working days.

One to three working days

About 30 minutes.

Security level

The effect of using SSL certificate

After using the SSL certificate, different effects are displayed in each browser:

1. Http will be replaced by https

2. There is a green lock mark in front of the address bar

3. If you are using an EV SSL certificate, it will be displayed as a green address bar and the enterprise name will be displayed.

2. How does the SSL certificate create a secure SSL connection?

When a browser tries to access a SSL-protected Web site, the browser and the Web server use a process called a "SSL handshake" to establish a SSL connection (see figure below). Note that the SSL handshake is invisible to the user and occurs immediately.

Basically, three keys are used to set up the SSL connection: the public key, the private key, and the session key. Anything encrypted with a public key can only be decrypted with a private key, and vice versa.

Because using private and public keys for encryption and decryption requires a lot of processing power, they are only used to create symmetric session keys during the SSL handshake. After a secure connection is established, the session key is used to encrypt all transmitted data.

1. The browser connects to a Web server (website) protected by SSL (HTTPS). The browser asks the server to identify itself.

2. The server sends a copy of its SSL certificate, including the server's public key.

3. The browser checks the root directory of the certificate according to the trusted CA list. The certificate has not expired or revoked, and its common name is valid for the website to which it is connected. If the browser trusts the certificate, it creates, encrypts, and sends back the symmetric session key using the server's public key.

4. The server uses its private key to decrypt the symmetric session key and returns the confirmation encrypted with the session key to start the encrypted session.

5. The server and browser now encrypt all transmitted data with the session key.

Third, how to easily identify SSL connections

You can easily identify secure connections. You can determine whether the website is protected by an SSL certificate by looking at the URL. If URL starts with "https://", it is understandable that the site is secured with an SSL certificate. The standard Web address begins with HTTP. In sites protected by SSL, HTTP is replaced with HTTPS. The extra "s" indicates that it is a security page.

When you visit a website with a SSL certificate installed, the browser displays one or all of the following:

To understand how a computer queries the hierarchy to generate an IP site on the screen, you need a basic understanding of the elements in the domain name and their relationship to the Web address.

Https at the beginning of URL

Green padlock

Green address bar

How the browser displays the secure connection depends on the type of certificate you buy (we'll discuss it later) and what browser you use to surf the Internet. Most importantly, all well-known browsers (Firefox, Chrome, etc.), including mobile Internet browsers, achieve these indicators in some way.

SSL certificate securely encrypts the website, which can effectively prevent hijacking, prevent your website from being maliciously implanted with advertisements, prevent tampering and monitoring from leaking users' passwords, and optimize the SEO ranking of search engines with SSL certificates.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.