SSL/TLS — Technology Wiki

Overview

Direct Answer

SSL/TLS is a pair of cryptographic protocols—Secure Sockets Layer (now deprecated) and its successor Transport Layer Security—that establish encrypted communication channels between clients and servers over untrusted networks. TLS remains the industry standard for protecting data in transit, authenticating endpoints, and preventing eavesdropping and tampering.

How It Works

TLS employs a handshake mechanism where client and server negotiate cipher suites, exchange certificates for authentication, and derive shared encryption keys using asymmetric cryptography. Once the handshake completes, application data flows through a symmetric encryption tunnel, with each record authenticated using message authentication codes to detect tampering.

Why It Matters

Organisations require cryptographic protection of sensitive data to meet regulatory compliance (GDPR, HIPAA, PCI-DSS), prevent credential theft, and maintain customer trust. Modern web commerce, banking, and healthcare infrastructure depend on widespread deployment; absence creates significant breach liability and reputational risk.

Common Applications

HTTPS for web browsing, email protocols (SMTPS, IMAPS), VPN tunnels, API communications, and database connections all employ TLS encryption. Financial institutions, healthcare providers, and e-commerce platforms rely on it to secure customer transactions and personal data.

Key Considerations

Certificate management complexity, CPU overhead during handshakes, and version deprecation (SSL 3.0 and earlier remain cryptographically broken) require ongoing operational maintenance. Misconfiguration—weak ciphers, expired certificates, or incorrect hostname validation—remains a common vulnerability vector despite protocol strength.

Cross-References(1)

Networking & Communications

Computer Network

Related in Protocols & Standards

Computer Network

A collection of interconnected computing devices that share resources and communicate using standardised protocols.

TCP/IP

Transmission Control Protocol/Internet Protocol — the fundamental communication protocol suite powering the internet.

HTTP

Hypertext Transfer Protocol — the application-layer protocol for transmitting hypermedia documents on the World Wide Web.

HTTPS

HTTP Secure — an encrypted version of HTTP using TLS for secure communication over the internet.

DNS

Domain Name System — the hierarchical system that translates human-readable domain names into numerical IP addresses.

IP Address

A unique numerical label assigned to each device connected to a computer network for identification and routing.

IPv6

The most recent version of the Internet Protocol, providing a vastly larger address space than IPv4.

Subnet

A logical subdivision of an IP network that improves security and performance by segmenting traffic.

Software-Defined Networking

An approach to networking that uses software-based controllers to manage network behaviour centrally.

Wi-Fi 6

The sixth generation of Wi-Fi technology offering improved speed, capacity, and performance in dense environments.

Network Latency

The time delay between sending and receiving data across a network, measured in milliseconds.

Bandwidth

The maximum rate of data transfer across a network path, typically measured in bits per second.

More in Networking & Communications

Proxy Server

Infrastructure

An intermediary server that forwards requests between clients and other servers, providing security and caching.

VPN

Infrastructure

Virtual Private Network — a technology creating a secure, encrypted connection over a less secure network like the internet.

Network Orchestration

Protocols & Standards

The automated coordination and management of network resources, services, and policies across infrastructure.

Network Monitoring

Protocols & Standards

The practice of continuously observing a computer network for slow or failing components.

VLAN

Infrastructure

Virtual Local Area Network — a logical grouping of network devices that communicate as if on the same physical network.

Network Automation

Protocols & Standards

Using software to automatically configure, manage, test, deploy, and operate network devices and services.

Routing Protocol

Protocols & Standards

A protocol that determines the optimal path for data packets to travel across interconnected networks.

NAT

Protocols & Standards

Network Address Translation — a method of mapping one IP address space into another by modifying packet headers.