Transport Layer Security

Transport Layer Security (TLS) and its predecessor, Secure Sockets Layer (SSL), are cryptographic protocols that provide security and data integrity for communications over networks such as the Internet. TLS and SSL encrypt the segments of network connections at the Transport Layer end-to-end.^[1]

• Transport Layer Security [EN] @ Wikipedia
• Transport Layer Security [DE] @ Wikipedia

Documentation

Request for Comments (RFC)

• 4492 - Elliptic Curve Cryptography (ECC) Cipher Suites for Transport Layer Security (TLS) [EN]
• 5746 - Transport Layer Security (TLS) Renegotiation Indication Extension [EN]
• 5878 - Transport Layer Security (TLS) Authorization Extensions [EN]
• 6066 - Transport Layer Security (TLS) Extensions: Extension Definitions [EN]
• 6962 - Certificate Transparency [EN]
• 7027 - Elliptic Curve Cryptography (ECC) Brainpool Curves for Transport Layer Security (TLS) [EN]
• 7505 - TLS Fallback Signaling Cipher Suite Value (SCSV) for Preventing Protocol Downgrade Attacks [EN]
• 7525 - Recommendations for Secure Use of Transport Layer Security (TLS) and Datagram Transport Layer Security (DTLS) [EN]
• 7627 - Transport Layer Security (TLS) Session Hash and Extended Master Secret Extension [EN]
• 7685 - A Transport Layer Security (TLS) ClientHello Padding Extension [EN]
• 7905 - ChaCha20-Poly1305 Cipher Suites for Transport Layer Security (TLS) [EN]
• 7919 - Negotiated Finite Field Diffie-Hellman Ephemeral Parameters for Transport Layer Security (TLS) [EN]
• 8446 - The Transport Layer Security (TLS) Protocol Version 1.3 [EN]
• 8461 - SMTP MTA Strict Transport Security (MTA-STS) [EN]

Further Information

• Server Side TLS [EN] @ MozillaWiki

Implementations

Additional Resources

• SSL Server Test
  • SSL Server Test (API) [EN] @ Qualys SSL Labs
  • SSLyze - Fast and full-featured SSL scanner [EN]

• SSL Client Test
  • How's my SSL? [EN]

References