Encryption Protocols Above TCP

• Secure Sockets Layer (SSL)

  • developed by Netscape to secure web transactions
  • very widely deployed in web servers and browsers
    • but actually a general purpose transport layer security protocol
  • formal X.509 public key certificates

• Secure Shell (SSH)

  • developed by Tatu Ylonen for UNIX environments
    • originally open source, taken commercial
  • scp/ssh/slogin replace insecure rcp/rsh/rlogin
  • TCP port forwarding facility
  • simplified public key management
    • man-in-middle attack on first connect

Previous slide

Next slide

Back to first slide

View graphic version