Spacer
 
E-Commerce
101
 		  Spacer  
Start A Web
Business
 		  Spacer  
Grow Your
Business
 		  Spacer  
Free
Stuff
 		  Spacer  
Advertise
Here
 		  Spacer  
Help
 		 
Search this site
Match All  Any

  Advanced Search

Sponsored Links

 Build a Web business - not just a Web site - in a tenth of the time and at the tenth of the cost! CLICK NOW for details!

Uncover a brand new way to start or expand a small business on the web.

New Edition! Greatly Expanded - Totally Updated - Same Crazy Low Price!
New Edition! Greatly Expanded - Totally Updated - Same Crazy Low Price!

Our Partners

Please visit our partners' Web sites:

 EZ Web
  Business Builder

 Site Build It!
The Ultimate Guide To Selling Online - Completely Revised!

Enabling technologies
SSL in action


Print this
E-mail this

See Also

  Introduction

  Encryption

  SSL

  SET

  Smart Cards

  Links

  FAQ

An SSL connection is initiated by the client (normally a Web browser) by requesting a document to be sent through the HTTPS protocol as proposed to the standard HTTP protocol.

This is done by by simply prefixing the URL by "https" as opposed to "http". For example:

http://server.domain.com/index.html
requests the document index.html be sent through the standard HTTP protocol, whilst

https://server.domain.com/index.html
requests the same document be sent using the HTTPS protocol which incorporates SSL.

Here in detail are the steps taken during a SSL transaction:

  1. The client sends a request for a document to be transmitted using the HTTPS protocol by prefixing the URL with "https".
  2. The server sends its certificate to the client.
  3. The client checks if the certificate was issued by a Certificate Authority (CA) it trusts. If not, it gives the user the option to continue or to terminate the transaction.
  4. The client compares the information in the certificate with the information it just received concerning the site: its domain name and its public key. If the information matches, the client accepts the site as authenticated.
  5. The client tells the server what ciphers, or encryption algorithms, it can communicate with.
  6. The server chooses the strongest common cipher and informs the client.
  7. The client generates a private (or session) key using the agreed cipher.
  8. The client then encrypts the session key using the server's public key and sends it to the server.
  9. The server receives the encrypted session key and decrypts it with its private key.
  10. The client and the server then use the session key for the rest of the transaction.
An alternative secure protocol is the Secure Electronic Transaction (SET) protocol developed by Visa and MasterCard specifically for enabling secure credit card transactions on the Internet. Designed for cardholders, merchants, banks and other card processors, SET uses digital certificates to ensure the identities of all parties involved in a purchase. SET also encrypts credit and purchase information before transmission on the Internet.
SSL introduction Secure Electronic Transactions (SET)

The HungerSite. Click here to feed the hungry.

  E-Commerce 101   Start A Web Business   Grow Your Business   Free Stuff
 News     Advertise     Contact Us     Help     Site Map     About

© Netsavvy Communications 1997-2003 All Rights Reserved
Legal Statement    Privacy Policy
Sell It! Home Page