Transport Layer Security

Transport Layer Security (TLS) is a cryptographic protocol designed to provide communications security over a computer network. The protocol is widely used in applications such as email, instant messaging, and voice over IP, but its use in securing HTTPS remains the most well known.^[1]

The TLS protocol aims primarily to provide security, including privacy (confidentiality), integrity, and authenticity through the use of cryptography, such as the use of certificates, between two or more communicating computer applications. It runs in the presentation layer and is itself composed of two layers: the TLS record and the TLS handshake protocols.^[1]

WARNING:

SSLv2, SSLv3, TLSv1.0 and TLSv1.1 should not be used anylonger!^[2]

Transport Layer Security [EN] @ Wikipedia
Transport Layer Security [DE] @ Wikipedia

Documentation

Request for Comments (RFC)

Further Information

Server Side TLS [EN] @ MozillaWiki

Implementations

GnuTLS

LibreSSL

OpenSSL

Additional Resources

SSL Server Test
- SSL Server Test (API) [EN] @ Qualys SSL Labs
- SSLyze - Fast and full-featured SSL scanner [EN]

SSL Client Test
- How's my SSL? [EN]

References

↑ ^1.0 ^1.1 Wikipedia contributors. "Transport Layer Security." Wikipedia. https://en.wikipedia.org/wiki/Transport_Layer_Security (accessed 05.08.2024)
↑ RFC contributors. "RFC 8996 - Deprecating TLS 1.0 and TLS 1.1." RFC Editor. https://www.rfc-editor.org/rfc/rfc8996.txt (accessed 05.08.2024)

[wikipedia-1] 1.0 ^1.1 Wikipedia contributors. "Transport Layer Security." Wikipedia. https://en.wikipedia.org/wiki/Transport_Layer_Security (accessed 05.08.2024)

[{{{ref}}}-2] RFC contributors. "RFC 8996 - Deprecating TLS 1.0 and TLS 1.1." RFC Editor. https://www.rfc-editor.org/rfc/rfc8996.txt (accessed 05.08.2024)

[1]

[2]