SSL is the abbreviation of Secure Socket Layer. It is a process to encrypt the data throughout the internet to make secured the data.
SSL ensure that your provided data does not going direct to the webmaster or to the web host .So ,they can not take any benefit from the data you provided. Because, your data pass through another host from where the SSL is set up and it is encrypted by a critical encryption code. So, the website receive the data is coded and not understandable.
Types of SSL encryption:
Generally there are two type of encryption code is used in SSL encryption. One is 128-bit SSL security and another is 256-bit SSL security. Of course 256-bit SSL certificate is more secured and reliable.
How to understand:
The simplest way to recognize a SSL secured website is its URL. This URL starts with “https” where the other starts with “http”.
When you see this “https” at the starting of any URL you can be sure that this website is secured and you can trust the website. But, SSL encryption only ensure about the input data on the website, not the website ownership or their business. Take this on your mind. For this confirmation, you have to know about SSL Certificate.
How SSL security works?
When a website is SSL secured, it takes a different host to redirect its database and data are passing through that server become encrypted. Following steps happens on the process:
- The client sends the server the client’s SSL version number, session data, and other information required that the server needs to communicate with the client using SSL.
- The server sends the client the server’s SSL version number other required information that the client needs to communicate with the server over SSL.
- The server sends its own certificate, and if the client is requesting a server resource that requires client authentication, the server requests the client’s certificate and go to nest step..
- Then the client uses the information sent by the server to authenticate the server. If the server cannot be authenticated, the user is warned of the problem and informed that an encrypted and authenticated connection cannot be established. If the server can be successfully authenticated, the client proceeds to next step.
- Using all data generated in the handshake thus far, the client will create the pre-master secret for the session, encrypts it with the server’s public key, and then sends the encrypted pre-master secret to the server.
- If the server has requested client authentication, the client also signs another piece of data that is unique to this handshake and known by both the client and server.
- If the server has requested client authentication, the server attempts to authenticate the client . If the client cannot be authenticated, the session ends. If the client can be successfully authenticated, the server uses its private key to decrypt the pre-master secret, and then performs a series of steps to generate the master secret.
- Both the client and the server use the master secret to generate the session keys, which are symmetric keys used to encrypt and decrypt information exchanged during the SSL session and to verify its integrity
- The client sends a message to the server informing it that future messages from the client will be encrypted with the session key. It then sends a separate (encrypted) message indicating that the client portion of the handshake is finished.
- The server sends a message to the client informing it that future messages from the server will be encrypted with the session key. It then sends a separate (encrypted) message indicating that the server portion of the handshake is finished.
The SSL handshake is now complete and the session begins. The client and the server use the session keys to encrypt and decrypt the data they send to each other and to validate its integrity.
This is the normal operation condition of the secure channel. At any time, due to internal or external stimulus (either automation or user intervention), either side may renegotiate the connection, in which case, the process repeats itself
Caution : Do not provide your credit card / debit card information or any of your online banking information to any website that is not secured with SSL. It may cause a great harm to you.