Ssl/Tls (Https) - D-Link DFL-1600 User Manual

22.3. SSL/TLS (HTTPS)

243
22.3 SSL/TLS (HTTPS)
The Secure Sockets Layer (SSL) protocol is a browser-based secure
transaction standard alternative to IPsec-based VPNs.
It requires little or no software or hardware on remote PCs, and the secure
connection is mainly operated by the web browser and the web server,
which is a easier implemented and more cost-efficient means compared to
the IPsec scheme. Further more, it can easily provide user-by-user
authentication.
Built upon private key encryption and public key authentication, SSL
provides privacy and data integrity between two communicating
applications over TCP/IP. In the OSI module, the SSL protocol layer is
placed between the connection-oriented network layer protocol TCP/IP and
the application layer(e.g. HTTP). It relies on certificates for entity
authentication and the entity's public key is used to negotiate the
symmetric key for traffic encryption.
The Transport Layer Security (TLS), is the successor to SSL and provides
much the same functionality but with much firmer standardization and
foothold in the IETF.
The HTTP running on top of SSL/TLS is often called HTTPS, which is one
common use of SSL/TLS to secure web browsing service between a browser
and a web server. When you visit "secure" web sites, you may have noticed
that the URLs begin with the letters "https://" rather than "http://".
This is HTTP wrapped up inside SSL/TLS. Most commonly used web
browsers support HTTPS, and more and more web sites use the protocol to
obtain confidential user information, such as credit card numbers.
There are a number of versions of the SSL/TLS protocol. D-Link firewalls
fully support SSLv3 and TLSv1.
D-Link Firewalls User's Guide