Abstract image of a woman sitting on books and studying on a laptop

Secure Socket Layer.pptx

Download as PPTX, PDF
J
Jenish Prajapati

1) SSL is a protocol for secure communication over the internet that ensures data privacy and integrity. It uses certificates and encryption to provide authentication, confidentiality, and message integrity. 2) SSL establishes a secure connection through a handshake process where the server sends its certificate to the client, which verifies the certificate and sends an encrypted session key to the server. 3) SSL sits between the application layer (such as HTTP) and the transport layer (TCP), encrypting and decrypting data sent between a client and server to provide security.

Engineering
Related topics:
Computer Networking
1 of 15
Download to read offline
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
1 Date: 2079/01/9 Submitted By: Arun Prajapati Babin Datheputhe Jenish Prajapati Manish Hyongoju Shreejan Shilpakar
Introduction ● It is an Internet Protocol for secure exchange of information between a web browser and a web server ● Ensuring that all data passed between them remain private and free from attack. ● This is done with the use of Certificates and keys ● Security services are: ○ Authentication ○ Confidentiality ○ Message integrity ● Developed By Netscape Corporation in 1994. ● Currently comes in three versions: 2,3 and 3.1 2
Example of SSL with Amazon 3 - Secured Website like Amazon uses SSL. - padlock icon. Or (in status bar) or https - This indicates website’s server uses SSL to secure your personal information. - This type of SSL between a client and a website server is known as Server Authentication. Fig. Example of Secure connection
Server Authentication 4 Fig. Example of Certificate
Steps for SSL Communication 1) Client connects to a web server (website) secured with SSL (https). Client requests that the server identify itself. 2) Server sends a copy of its SSL Certificate, including the server’s public key. 3) Client checks that the certificate is trusted: unexpired, unrevoked, and valid for the website that it is connecting to. If the client trusts the certificate, it creates, encrypts, and sends back a session key using the server’s public key. 4) Server decrypts the symmetric session key using its private key and begins an encrypted session with the client. The server and client now encrypt all transmitted data with the session key. 5 Fig. General view of SSL communication
SSL Communication diagram/ Handshake diagram 6 Fig. SSL handshake diagram
Position of SSL in TCP/IP 7 Fig. TCP/IP or OSI layer
SSL ARCHITECTURE 8 Fig. Architecture of SSL with respect to OSI layer
SSL Protocol Stack ● Handshake phase Handshake Protocol is used to establish sessions. This protocol allows the client and server to authenticate each other by sending a series of messages to each other. Handshake protocol uses four phases to complete its cycle. ● Change-cipher Protocol This protocol uses the SSL record protocol. Unless Handshake Protocol is completed, the SSL record Output will be in a pending state. After handshake protocol, the Pending state is converted into the current state. Change-cipher protocol consists of a single message which is 1 byte in length and can have only one value. This protocol’s purpose is to cause the pending state to be copied into the current state. 9
● Alert Protocol This protocol is used to convey SSL-related alerts to the peer entity. Each message in this protocol contains 2 bytes. This Alert has no impact on the connection between sender and receiver. But, alert level indicates : Level -1 : Bad certificate, no certificate or certificate expired etc. Level-2 : Handshake failure, Decompression failure, Bad record MAC etc. 10
SSL Record Protocol 11 ● Divided into fragments ● Block compressed ● Compression encrypted with MAC(Message Authentication Code) ● Encryption of data is done ● SSL header is added
Silent Features • The advantage of this approach is that the service can be tailored to the specific needs of the given application. • Secure Socket Layer was originated by Netscape. • SSL is designed to make use of TCP to provide reliable end-to-end secure service. • This is a two-layered protocol. 12
SSL Services ●Receive data from any application layer protocol but receives typically from HTTP ●Data received from application are optionally compressed, signed and encrypted. ●The data is then passed to TCP layer ●SSL provides services on data received from application layer such as:- 13
SSL Services 1.Fragmentation At first SSL provides the data block into blocks of sizes 2^14 bytes or less 2.Compression Each fragment of data is compressed using lossless compression negotiated between the transmitter and receiver. This service is optional 3. Message Integrity to preserve the integrity of data, SSL uses keyed between hash function to create a MAC 4. Confidentiality the original data and MAC are encrypted using symmetric key cryptography 5. Framing A header is added to encrypted payload which is then passed to a reliable transport layer protocol such as TCP 14
Thank you!!! 15

More Related Content

PPTX
Secure Sockets Layer (SSL)
BGSBU Rajouri
 
PPT
Secure socket later
Muhammad Ahmad Nazar
 
PPTX
The last picks
Nafiur Rahman Tuhin
 
PPTX
Module2 PPrwgerbetytbteynyunyunythyhtyT.pptx
ThanushB1
 
PPSX
Secure socket layer
Nishant Pahad
 
PPSX
Secure socket layer
Nishant Pahad
 
PDF
SSL Secure socket layer
Ahmed Elnaggar
 
PPTX
group no 6.pptx
NIRAJSINGH339856
 
Secure Sockets Layer (SSL)
BGSBU Rajouri
 
Secure socket later
Muhammad Ahmad Nazar
 
The last picks
Nafiur Rahman Tuhin
 
Module2 PPrwgerbetytbteynyunyunythyhtyT.pptx
ThanushB1
 
Secure socket layer
Nishant Pahad
 
Secure socket layer
Nishant Pahad
 
SSL Secure socket layer
Ahmed Elnaggar
 
group no 6.pptx
NIRAJSINGH339856
 

Similar to Secure Socket Layer.pptx (20)

PPTX
SECURE SOCKET LAYER ( WEB SECURITY )
Monodip Singha Roy
 
PPTX
PPT ON WEB SECURITY BY MONODIP SINGHA ROY
Monodip Singha Roy
 
PPTX
SSL And TLS
Ghanshyam Patel
 
PPTX
ncsmodule module department of electronics
PrateekJoshi63
 
PPTX
Network Security- Secure Socket Layer
Dr.Florence Dayana
 
PPTX
Sequere socket Layer
Raghavendra Rao
 
PPT
4th unit bkjnkljnkjxzczczxczxczxczxvzxvzxzxv
saranyas493379
 
PPTX
Internet security protocol
Mousmi Pawar
 
PPT
SecureSocketLayer.ppt
PranavUndre1
 
PPT
Ssl (Secure Sockets Layer)
Asad Ali
 
DOCX
What is TLS/SSL?
Shehzad Imran
 
PPTX
SSL
Badrul Alam bulon
 
PDF
presentation2-151203145018-lva1-app6891.pdf
GumanSingh10
 
PPT
WEB SECURITY CRYPTOGRAPHY PPTeriu8t erhiut.ppt
SonukumarRawat
 
PPT
What is SSL ? The Secure Sockets Layer (SSL) Protocol
Mohammed Adam
 
PPT
Lecture 6 web security
rajakhurram
 
PDF
BAIT1103 Chapter 4
limsh
 
PDF
VULNERABILITIES OF THE SSL/TLS PROTOCOL
cscpconf
 
PDF
Vulnerabilities of the SSL/TLS Protocol
csandit
 
PPTX
SSL.pptx
hammadhassan9507
 
SECURE SOCKET LAYER ( WEB SECURITY )
Monodip Singha Roy
 
PPT ON WEB SECURITY BY MONODIP SINGHA ROY
Monodip Singha Roy
 
SSL And TLS
Ghanshyam Patel
 
ncsmodule module department of electronics
PrateekJoshi63
 
Network Security- Secure Socket Layer
Dr.Florence Dayana
 
Sequere socket Layer
Raghavendra Rao
 
4th unit bkjnkljnkjxzczczxczxczxczxvzxvzxzxv
saranyas493379
 
Internet security protocol
Mousmi Pawar
 
SecureSocketLayer.ppt
PranavUndre1
 
Ssl (Secure Sockets Layer)
Asad Ali
 
What is TLS/SSL?
Shehzad Imran
 
SSL
Badrul Alam bulon
 
presentation2-151203145018-lva1-app6891.pdf
GumanSingh10
 
WEB SECURITY CRYPTOGRAPHY PPTeriu8t erhiut.ppt
SonukumarRawat
 
What is SSL ? The Secure Sockets Layer (SSL) Protocol
Mohammed Adam
 
Lecture 6 web security
rajakhurram
 
BAIT1103 Chapter 4
limsh
 
VULNERABILITIES OF THE SSL/TLS PROTOCOL
cscpconf
 
Vulnerabilities of the SSL/TLS Protocol
csandit
 
SSL.pptx
hammadhassan9507
 
Ad

Recently uploaded (20)

PPTX
AUTOMOTIVE ENGINE MANAGEMENT (MECHATRONICS).pptx
joanaabban6
 
PDF
Present and Future of Systems Engineering: Air Combat Systems
Bernardo A. Delicado
 
PDF
Java Basics-Introduction and program control
lohithsrikarb719
 
PPTX
ASME PCC-02 TRAINING -DESKTOP-NLE5HNP.pptx
laxmikantvjawale
 
PPTX
Software Engineering and software moduleing
deepikame6
 
PPTX
CN_Unite_1 AI&DS ENGGERING SPPU PUNE UNIVERSITY
versetooni85
 
PDF
Unit I -OPERATING SYSTEMS_SRM_KATTANKULATHUR.pptx.pdf
HarshDudhatra4
 
PPTX
CONTRACTS IN CONSTRUCTION PROJECTS: TYPES
Surabhi794944
 
PDF
Design of Material Handling Equipment Lecture Note
Barsena
 
PDF
August 2025 - Top 10 Read Articles in Network Security & Its Applications
IJNSA Journal
 
PPTX
MAD Unit - 3 User Interface and Data Management (Diploma IT)
JappanMavani
 
PPTX
Management Information system : MIS-e-Business Systems.pptx
ShankarGowda22
 
PPTX
Amdahl’s law is explained in the above power point presentations
sangeetha952248
 
PDF
Cryptography and Network Security-Module-I.pdf
Dr.Manjunath Kotari
 
PPTX
ai_satellite_crop_management_20250815030350.pptx
kathiravanh1919
 
PDF
UEFA_Carbon_Footprint_Calculator_Methology_2.0.pdf
tuchinad02
 
PDF
20250617 - IR - Global Guide for HR - 51 pages.pdf
JanBaumann6
 
PPTX
PRASUNET_20240614003_231416_0000[1].pptx
singlagaurav1311
 
PDF
August -2025_Top10 Read_Articles_ijait.pdf
ijait
 
PPTX
"Array and Linked List in Data Structures with Types, Operations, Implementat...
usham61
 
AUTOMOTIVE ENGINE MANAGEMENT (MECHATRONICS).pptx
joanaabban6
 
Present and Future of Systems Engineering: Air Combat Systems
Bernardo A. Delicado
 
Java Basics-Introduction and program control
lohithsrikarb719
 
ASME PCC-02 TRAINING -DESKTOP-NLE5HNP.pptx
laxmikantvjawale
 
Software Engineering and software moduleing
deepikame6
 
CN_Unite_1 AI&DS ENGGERING SPPU PUNE UNIVERSITY
versetooni85
 
Unit I -OPERATING SYSTEMS_SRM_KATTANKULATHUR.pptx.pdf
HarshDudhatra4
 
CONTRACTS IN CONSTRUCTION PROJECTS: TYPES
Surabhi794944
 
Design of Material Handling Equipment Lecture Note
Barsena
 
August 2025 - Top 10 Read Articles in Network Security & Its Applications
IJNSA Journal
 
MAD Unit - 3 User Interface and Data Management (Diploma IT)
JappanMavani
 
Management Information system : MIS-e-Business Systems.pptx
ShankarGowda22
 
Amdahl’s law is explained in the above power point presentations
sangeetha952248
 
Cryptography and Network Security-Module-I.pdf
Dr.Manjunath Kotari
 
ai_satellite_crop_management_20250815030350.pptx
kathiravanh1919
 
UEFA_Carbon_Footprint_Calculator_Methology_2.0.pdf
tuchinad02
 
20250617 - IR - Global Guide for HR - 51 pages.pdf
JanBaumann6
 
PRASUNET_20240614003_231416_0000[1].pptx
singlagaurav1311
 
August -2025_Top10 Read_Articles_ijait.pdf
ijait
 
"Array and Linked List in Data Structures with Types, Operations, Implementat...
usham61
 
Ad

Secure Socket Layer.pptx

  • 1. 1 Date: 2079/01/9 Submitted By: Arun Prajapati Babin Datheputhe Jenish Prajapati Manish Hyongoju Shreejan Shilpakar
  • 2. Introduction ● It is an Internet Protocol for secure exchange of information between a web browser and a web server ● Ensuring that all data passed between them remain private and free from attack. ● This is done with the use of Certificates and keys ● Security services are: ○ Authentication ○ Confidentiality ○ Message integrity ● Developed By Netscape Corporation in 1994. ● Currently comes in three versions: 2,3 and 3.1 2
  • 3. Example of SSL with Amazon 3 - Secured Website like Amazon uses SSL. - padlock icon. Or (in status bar) or https - This indicates website’s server uses SSL to secure your personal information. - This type of SSL between a client and a website server is known as Server Authentication. Fig. Example of Secure connection
  • 5. Steps for SSL Communication 1) Client connects to a web server (website) secured with SSL (https). Client requests that the server identify itself. 2) Server sends a copy of its SSL Certificate, including the server’s public key. 3) Client checks that the certificate is trusted: unexpired, unrevoked, and valid for the website that it is connecting to. If the client trusts the certificate, it creates, encrypts, and sends back a session key using the server’s public key. 4) Server decrypts the symmetric session key using its private key and begins an encrypted session with the client. The server and client now encrypt all transmitted data with the session key. 5 Fig. General view of SSL communication
  • 6. SSL Communication diagram/ Handshake diagram 6 Fig. SSL handshake diagram
  • 7. Position of SSL in TCP/IP 7 Fig. TCP/IP or OSI layer
  • 8. SSL ARCHITECTURE 8 Fig. Architecture of SSL with respect to OSI layer
  • 9. SSL Protocol Stack ● Handshake phase Handshake Protocol is used to establish sessions. This protocol allows the client and server to authenticate each other by sending a series of messages to each other. Handshake protocol uses four phases to complete its cycle. ● Change-cipher Protocol This protocol uses the SSL record protocol. Unless Handshake Protocol is completed, the SSL record Output will be in a pending state. After handshake protocol, the Pending state is converted into the current state. Change-cipher protocol consists of a single message which is 1 byte in length and can have only one value. This protocol’s purpose is to cause the pending state to be copied into the current state. 9
  • 10. ● Alert Protocol This protocol is used to convey SSL-related alerts to the peer entity. Each message in this protocol contains 2 bytes. This Alert has no impact on the connection between sender and receiver. But, alert level indicates : Level -1 : Bad certificate, no certificate or certificate expired etc. Level-2 : Handshake failure, Decompression failure, Bad record MAC etc. 10
  • 11. SSL Record Protocol 11 ● Divided into fragments ● Block compressed ● Compression encrypted with MAC(Message Authentication Code) ● Encryption of data is done ● SSL header is added
  • 12. Silent Features • The advantage of this approach is that the service can be tailored to the specific needs of the given application. • Secure Socket Layer was originated by Netscape. • SSL is designed to make use of TCP to provide reliable end-to-end secure service. • This is a two-layered protocol. 12
  • 13. SSL Services ●Receive data from any application layer protocol but receives typically from HTTP ●Data received from application are optionally compressed, signed and encrypted. ●The data is then passed to TCP layer ●SSL provides services on data received from application layer such as:- 13
  • 14. SSL Services 1.Fragmentation At first SSL provides the data block into blocks of sizes 2^14 bytes or less 2.Compression Each fragment of data is compressed using lossless compression negotiated between the transmitter and receiver. This service is optional 3. Message Integrity to preserve the integrity of data, SSL uses keyed between hash function to create a MAC 4. Confidentiality the original data and MAC are encrypted using symmetric key cryptography 5. Framing A header is added to encrypted payload which is then passed to a reliable transport layer protocol such as TCP 14