TLS (Transport Layer Security) and SSL (Secure Sockets Layer) are protocols that provide data encryption and authentication between applications and servers in scenarios where that data is being sent across an insecure network, such as checking your email. - SSL versus TLS – What’s the difference?
- A program can initiate a secure connection with a server by Port ('explicit' - SSL), or by Protocol ('implicit' - TLS)
- A negotiation between the client and the server determines which protocol is used. This is based on which software is installed on each and how each is configured.
- SSL 3.0 served as the basis for TLS 1.0 which, as a result, is sometimes referred to as SSL 3.1
- POODLE and BEAST exploited weaknesses in SSL and early TLS
- There are no fixes or patches that can adequately repair SSL or early TLS
- TLS v1.1 and v1.2 are significantly more secure and fix many vulnerabilities present in SSL v3.0 and TLS v1.0
- SSL certificates verify that the domain name they are issued for really belongs to the server, and not some 'middleman'