HTTPS
Synonyms
Definition
HTTPS is an encrypted version of the HTTP application-layer Internet protocol for enacting secure transactions on the World Wide Web, such as in financial transactions and for confidential corporate and other data. HTTPS syntax is identical in all respects to the standard HTTP protocol except that resource requests, as well as the returned data, are encrypted by the SSL (Secure Sockets Layer) or TLS (Transport Layer Security) protocols using symmetric encryption technologies such as AES or RC4.
Before establishing a secure link, communicating nodes must authenticate themselves – they must present credentials that reliably establish their identities. In HTTPS, Web browsers and services determine whether or not to trust servers, by authenticating an X.509 public-key cryptographic identity certificate provided by the server. X.509 certificates are signed by a trusted Certification Authority (e.g., Verisign,...
References
- Apache Software Foundation (2011) SSL/TLS strong encryption: an introduction. Apache Software Foundation. https://httpd.apache.org/docs/2.3/ssl/ssl_intro.html
- Dierks T (2008) Rescorla E: IETF RFC 5246: the transport layer security (TLS) protocol, version 1.2. In: IETF Requests for Comment, vol 5246. Internet Engineering Task Force. https://www.ietf.org/rfc/rfc5246.txt
- Rescorla E (2000) HTTP over TLS: RFC 2818. Internet Engineering Task Force. https://www.ietf.org/rfc/rfc2818.txt