Secure Socket Layer (5)

• Message transfer is 40 bit RC4 (export) and 128 bit RC4 (in USA)
• Public key cryptography - RSA 1024 bit, D-H
• HTTP protocol is using port 80 (by default); HTTP+SSL (https://…) is using port 443 by default
• Naming convention for SSL enabled servers: HTTPS, FTPS, NNTPS
• The same server can run both secure and insecure servers simultaneously: access to catalog of products can be insecure, whereas ordering and payment should be done through the secure channel
• Non-SSL browser cannot access https server

Previous slide

Next slide

Back to first slide

View graphic version