FACTOID # 122: If you're Dutch or Swedish, you're among the world's most likely to end up living in a retirement home. If you're Japanese, you'll probably end up living with your children.
 
 Home   Encyclopedia   Statistics   Countries A-Z   Flags   Maps   Education   Forum   FAQ   About 
 
WHAT'S NEW
RELATED ARTICLES
People who viewed "HTTPS" also viewed:
RECENT ARTICLES
More Recent Articles »
 

FACTS & STATISTICS    Simple view

  1. Select countries to view: (hold down Control key and click to select several)

     

     

    Compare:

     

     
  1. Select fact or statistic: (* = graphable)

     

     

     

  2. (OPTIONAL) Compare to statistic: (both need to be graphable)

     

     

     

  3. View result as:

     

       
(OR) SEARCH ALL encyclopedia, stats & forums:   

Encyclopedia > HTTPS
HTTP
Persistence · Compression · SSL
Headers
ETag · Cookie · Referer
Status codes
200 OK
302 Found
403 Forbidden
404 Not Found

https (Hypertext Transfer Protocol over Secure Socket Layer) is a URI scheme used to indicate a secure HTTP connection. It is syntactically identical to the http:// scheme normally used for accessing resources using HTTP. Using an https: URL indicates that HTTP is to be used, but with a different default TCP port (443) and an additional encryption/authentication layer between the HTTP and TCP. This system was designed by Netscape Communications Corporation to provide authentication and encrypted communication and is widely used on the World Wide Web for security-sensitive communication such as payment transactions and corporate logons. HTTP (for HyperText Transfer Protocol) is the primary method used to convey information on the World Wide Web. ... Schema of multiple vs. ... HTTP compression is a capability built into both web servers and web browsers, to make better use of available bandwidth. ... HTTP Headers form the core of a HTTP request, and are very important in a HTTP response. ... An ETag (entity tag) is an HTTP response header returned by an HTTP/1. ... This article is about the HTTP state mechanism. ... The referer, or HTTP referer, identifies, from the point of view of an internet webpage or resource, the address of the webpage (commonly the URL, the more generic URI or the i18n updated IRI) of the resource which links to it. ... The following is a list of HTTP response status codes and standard associated phrases, intended to give a short textual description of the status. ... A 404 error is presented to the user. ... In the field of computer networking, a URI scheme is the top level of the Uniform Resource Identifier (URI) naming structure. ... Secure communication describes means by which people can share information with varying degrees of certainty that third parties cannot know what was said. ... HTTP (for HyperText Transfer Protocol) is the primary method used to convey information on the World Wide Web. ... Hypertext Transfer Protocol (HTTP) is a communications protocol used to transfer or convey information on intranets and the World Wide Web. ... // Uniform Resource Locator (URL) formerly known as Universal Resource Locator, is a technical, Web-related term used in two distinct meanings: In popular usage and many technical documents, it is a synonym for Uniform Resource Identifier (URI); Strictly, the idea of a uniform syntax for global identifiers of network-retrievable... The Transmission Control Protocol (TCP) is one of the core protocols of the Internet protocol suite. ... Encrypt redirects here. ... For other uses of the terms authentication, authentic and authenticity, see authenticity. ... The Transmission Control Protocol (TCP) is one of the core protocols of the Internet protocol suite. ... Netscape Communications Corporation was the publisher of the Netscape Navigator web browser as well as many other internet and intranet client and server software products. ... For other uses of the terms authentication, authentic and authenticity, see authenticity. ... Encrypt redirects here. ... The World Wide Web and WWW redirect here. ...

Contents

How it works

For more details on this topic, see Transport Layer Security#How it works.

Strictly speaking, https is not a separate protocol, but refers to the combination of a normal HTTP interaction over an encrypted Secure Sockets Layer (SSL) or Transport Layer Security (TLS) connection. This ensures reasonable protection from eavesdroppers and man-in-the-middle attacks. Transport Layer Security (TLS) and its predecessor, Secure Sockets Layer (SSL), are cryptographic protocols that provide secure communications on the Internet for such things as web browsing, e-mail, Internet faxing, instant messaging and other data transfers. ... HTTP (for HyperText Transfer Protocol) is the primary method used to convey information on the World Wide Web. ... Encrypt redirects here. ... Secure Sockets Layer (SSL) and Transport Layer Security (TLS), its successor, are cryptographic protocols which provide secure communications on the Internet. ... Transport Layer Security (TLS) and its predecessor, Secure Sockets Layer (SSL), are cryptographic protocols that provide secure communications on the Internet for such things as web browsing, e-mail, Internet faxing, instant messaging and other data transfers. ... It has been suggested that Mafia Fraud Attack be merged into this article or section. ...


An https: URL may specify a TCP port; if it does not, the connection uses port 443 (unsecured HTTP typically uses port 80). The Transmission Control Protocol (TCP) is one of the core protocols of the Internet protocol suite. ... It has been suggested that this article or section be merged with Port numbers. ...


To prepare a web-server for accepting https connections the administrator must create a public key certificate for the web-server. These certificates can be created for Unix based servers with tool(s) such as OpenSSL's ssl-ca [1] or SuSE's gensslcert. This certificate must be signed by a certificate authority of one form or another, which certifies that the certificate holder is indeed the entity it claims to be. Web browsers are generally distributed with the signing certificates of major certificate authorities, so that they can verify certificates signed by them. In cryptography, a public key certificate (or identity certificate) is an electronic document which incorporates a digital signature to bind together a public key with an identity — information such as the name of a person or an organization, their address, and so forth. ... Filiation of Unix and Unix-like systems Unix (officially trademarked as UNIX®, sometimes also written as or ® with small caps) is a computer operating system originally developed in 1969 by a group of AT&T employees at Bell Labs including Ken Thompson, Dennis Ritchie and Douglas McIlroy. ... OpenSSL is an open source implementation of the SSL and TLS protocols. ... SUSE (properly pronounced , but often pronounced /suzi/) is a major retail Linux distribution, produced in Germany. ... In cryptography, a certificate authority or certification authority (CA) is an entity which issues digital certificates for use by other parties. ... In cryptography and computer security, a root certificate is an unsigned public key certificate, or a self-signed certificate, and is part of a PKI scheme. ...


Organizations may also run their own certificate authority, particularly if they are responsible for setting up browsers to access their own sites (for example, sites on a company intranet), as they can trivially add their own signing certificate to those shipped with the browser.


Some sites, especially those operated by hobbyists, use self-signed certificates on public sites. Using these provides protection against simple eavesdropping, but unlike a well-known certificate, preventing a man-in-the-middle attack with a self-signed certificate requires the site to make available some other secure method of verifying the certificate. In cryptography and computer security, a self-signed certificate is an identity certificate that is signed by its own subject. ... It has been suggested that Mafia Fraud Attack be merged into this article or section. ...


The system can also be used for client authentication, in order to restrict access to a Web server to only authorized users. For this, typically the site administrator creates certificates for each user which are loaded into their browser. These normally contain the name and e-mail address of the authorized user, and are automatically checked by the server on each reconnect to verify the user's identity, potentially without ever entering a password. For other uses of the terms authentication, authentic and authenticity, see authenticity. ...


Limitations

The level of protection depends on the correctness of the implementation by the web browser and the server software and the actual cryptographic algorithms supported. Look up Implementation in Wiktionary, the free dictionary. ... An example of a Web browser (Mozilla Firefox) A web browser is a software application that enables a user to display and interact with text, images, videos, music and other information typically located on a Web page at a website on the World Wide Web or a local area network. ... This article is about algorithms for encryption and decryption. ...


https only protects data in transit from eavesdropping and man-in-the-middle attacks. Once data arrive at their destination, they are only as safe as the computer they are on. Gene Spafford states that it is like "using an armored truck to transport rolls of pennies between someone on a park bench and someone doing business from a cardboard box."[2] Eugene H. Spafford (born 1956) (known colloquially as Spaf) is a professor of computer science at Purdue University and a leading computer security expert. ...


Because SSL operates below http and has no knowledge of higher level protocols, SSL servers can only present one certificate for a particular IP/port combination. This means that in most cases it is not feasible to use name-based virtual hosting with https. RFC-3546 TLS Extensions describes a solution called Server Name Indication (SNI), although support for is recent (Opera 8, Mozilla 1.8, Internet Explorer 7 on Windows Vista, ...).[3][4] Secure Sockets Layer (SSL) and Transport Layer Security (TLS), its successor, are cryptographic protocols which provide secure communications on the Internet. ... It has been suggested that this article or section be merged into shared web hosting service. ... Opera is a web browser and Internet suite developed by the Norwegian Opera Software company. ... Mozilla was the official, public, original name of Mozilla Application Suite by the Mozilla Foundation, nowadays called SeaMonkey suite. ... Windows Internet Explorer 7, commonly abbreviated IE7, is a web browser released by Microsoft in late 2006 for Windows Vista, Windows XP and Windows Server 2003. ... Windows Vista is a line of graphical operating systems used on personal computers, including home and business desktops, notebook computers, Tablet PCs, and media centers. ...


References

  1. ^ OpenSSL: Contribution, Misc
  2. ^ http://spaf.cerias.purdue.edu/presents/Dist0203.pdf
  3. ^ Server Name Indication (SNI)
  4. ^ Mozilla 1.8

See also

This article describes how security can be achieved through design and engineering. ... In computer security, AAA stands for “authentication, authorization and accounting”. Authentication  Authentication refers to the confirmation that a user who is requesting services is a valid user of the network services requested. ... A protocol for file transfer or file transfer protocol is a convention or standard that controls or enables the transfer of files between two computing endpoints. ... Secure hypertext transfer protocol (S-HTTP) is an alternative mechanism to the https URI scheme for encrypting web communications carried over HTTP. S-HTTP is defined in RFC 2660. ...

External links

  • Netscape’s SSL 3.0 Specification
  • Apache-SSL homepage (No longer actively developed)
  • Apache 2.2 mod_ssl documentation
  • RFC 2818 - HTTP Over TLS
  • HTTPS Protocol in Internet Explorer Development - MSDN
  • Manually Configuring Windows Communication Foundation (WCF) when using HTTP and HTTPS - MSDN
  • HTTPS Security Improvements in Internet Explorer 7 & its Compatibility Impact - MSDN
v  d  e
URI scheme
Official aaa: · aaas: · acap: · cap: · cid: · crid: · data: · dav: · dict: · dns: · fax: · file: · ftp: · go: · gopher: · h323: · http: · https: · im: · imap: · ldap: · mailto: · mid: · news: · nfs: · nntp: · pop: · pres: · rtsp: · sip: · sips: · snmp: · tel: · telnet: · urn: · wais: · xmpp:
Unofficial about: · aim: · callto: · cvs: · ed2k: · feed: · fish: · git: · gizmoproject: · iax2: · irc: · ircs: · lastfm: · ldaps: · magnet: · mms: · msnim: · nsfw: · psyc: · rsync: · secondlife: · skype: · ssh: · svn: · sftp: · smb: · sms: · soldat: · steam: · unreal: · ut2004: · webcal: · xfire: · ymsgr:
In the field of computer networking, a URI scheme is the top level of the Uniform Resource Identifier (URI) naming structure. ... In computer security, AAA stands for “authentication, authorization and accounting”. Authentication  Authentication refers to the confirmation that a user who is requesting services is a valid user of the network services requested. ... In computer security, AAA stands for “authentication, authorization and accounting”. Authentication  Authentication refers to the confirmation that a user who is requesting services is a valid user of the network services requested. ... The Application Configuration Access Protocol (ACAP) is a protocol which enhances IMAP by allowing the user to set up address books, user options, and other data for universal access. ... Multipurpose Internet Mail Extensions (MIME) is an Internet Standard for the format of e-mail. ... CRID - Content Reference Identifier, specified by the TV-Anytime forum. ... WebDAV, an abbreviation that stands for Web-based Distributed Authoring and Versioning, refers to the set of extensions to the Hypertext Transfer Protocol (HTTP) which allows users to collaboratively edit and manage files on remote World Wide Web servers. ... DICT is a dictionary network protocol created by the DICT Development Group. ... The Domain Name System or DNS is a system that stores information about host names and domain names in a kind of distributed database on networks, such as the Internet. ... For other uses, see Fax (disambiguation). ... This article is about the File Transfer Protocol standardised by the IETF. For other file transfer protocols, see File transfer protocol (disambiguation). ... Gopher is a distributed document search and retrieval network protocol designed for the Internet. ... H.323 is an umbrella recommendation from the ITU-T, that defines the protocols to provide audio-visual communication sessions on any packet network. ... Hypertext Transfer Protocol (HTTP) is a communications protocol used to transfer or convey information on intranets and the World Wide Web. ... // Instant messaging (IM) is a form of real-time communication between two or more people based on typed text. ... The Internet Message Access Protocol (commonly known as IMAP or IMAP4, and previously called Internet Mail Access Protocol, Interactive Mail Access Protocol (RFC 1064), and Interim Mail Access Protocol[1]) is an application layer Internet protocol operating on port 143 that allows a local client to access e-mail on... The Lightweight Directory Access Protocol, or LDAP (IPA: ), is an application protocol for querying and modifying directory services running over TCP/IP.[1] A directory is a set of objects with similar attributes organized in a logical and hierarchical manner. ... Simple Mail Transfer Protocol (SMTP) is the de facto standard for e-mail transmissions across the Internet. ... Multipurpose Internet Mail Extensions (MIME) is an Internet Standard for the format of e-mail. ... Usenet (USEr NETwork) is a global, decentralized, distributed Internet discussion system that evolved from a general purpose UUCP architecture of the same name. ... For network file systems in general, see network file system. ... The Network News Transfer Protocol or NNTP is an Internet application protocol used primarily for reading and posting Usenet articles, as well as transferring news among news servers. ... In computing, local e-mail clients use the Post Office Protocol version 3 (POP3), an application-layer Internet standard protocol, to retrieve e-mail from a remote server over a TCP/IP connection. ... In computer and telecommunications networks, presence information is a status indicator that conveys ability and willingness of a potential communication partner - for example a user to communicate. ... The Real Time Streaming Protocol (RTSP), developed by the IETF and created in 1998 as RFC 2326, is a protocol for use in streaming media systems which allows a client to remotely control a streaming media server, issuing VCR-like commands such as play and pause, and allowing time-based... The Session Initiation Protocol (SIP) is an application-layer control (signaling) protocol for creating, modifying, and terminating sessions with one or more participants. ... The Simple Network Management Protocol (SNMP) forms part of the internet protocol suite as defined by the Internet Engineering Task Force (IETF). ... Plain old telephone service, or POTS, are the services available from analogue telephones prior to the introduction of electronic telephone exchanges into the public switched telephone network. ... For the packet switched network, see Telenet. ... A Uniform Resource Name (URN) is a Uniform Resource Identifier (URI) that uses the urn scheme, and does not imply availability of the identified resource. ... Wide Area Information Servers or WAIS is a distributed text searching system that uses the protocol standard ANSI Z39. ... Jabber redirects here. ... AOL Instant Messenger (AIM) is a free, advertisement-supported proprietary instant messaging and presence computer program which uses the OSCAR instant messaging protocol and the TOC protocol. ... Skype (IPA: ) is a software program that allows users to make calls over the Internet to other Skype users free of charge and to landlines and cell phones for a fee. ... The Concurrent Versions System (CVS), also known as the Concurrent Versioning System, is an open-source version control system invented and developed by Dick Grune in the 1980s. ... FIles transferred over SHell protocol is a protocol to use SSH or RSH to transfer files between computers and manage remote files. ... Git is a distributed revision control / software configuration management project created by Linus Torvalds to manage software development of the Linux kernel. ... Gizmo Project is the name of a peer-to-peer VoIP network and of a proprietary freeware soft phone for that network. ... IAX is the Inter-Asterisk eXchange protocol used by Asterisk, a dual licensed open source and commercial PBX server from Digium and other softswitches and PBXs. ... This article is about Internet Relay Chat. ... This article is about Internet Relay Chat. ... Last. ... The Lightweight Directory Access Protocol, or LDAP (IPA: ), is an application protocol for querying and modifying directory services running over TCP/IP.[1] A directory is a set of objects with similar attributes organized in a logical and hierarchical manner. ... Microsofts streaming server Microsoft Media Services (also called NetShow Services) uses the Microsoft Media Server (MMS) protocol to transfer unicast data. ... For the old versions of this software called MSN Messenger, see MSN Messenger. ... Not safe for work, occasionally Not safe for wanking(NSFW), not work-safe (NWS), not school-safe (NSS), not suitable for school or work (NSSW), or not for British school kids (NFBSK) is Internet slang or shorthand. ... PSYC (Protocol for SYnchronous Conferencing) is a flexible text-based protocol for delivery of data to a flexible amount of recipients or people, by unicast or multicast. ... In computing, rsync is a computer program for Unix systems which synchronizes files and directories from one location to another while minimizing data transfer using delta encoding when appropriate. ... This article is about a virtual world. ... Skype (IPA: ) is a software program that allows users to make calls over the Internet to other Skype users free of charge and to landlines and cell phones for a fee. ... SSH redirects here. ... In computing, Subversion (SVN) is a version control system (VCS) initiated in 2000 by CollabNet Inc. ... In computing, the SSH File Transfer Protocol or SFTP is a network protocol that provides file transfer and manipulation functionality over any reliable data stream. ... In computer networking, Server Message Block (SMB) operates as an application-level network protocol mainly applied to shared access to files, printers, serial ports, and miscellaneous communications between nodes on a network. ... For other uses, see SMS (disambiguation). ... Soldat (meaning soldier in several languages) is a 2D multiplayer game for Windows. ... Steam is a digital distribution, digital rights management, multiplayer and communications platform developed by Valve Corporation. ... For other uses, see Unreal (disambiguation). ... Unreal Tournament 2004, also known as UT2004 or UT2K4, is a futuristic first-person shooter computer game developed by Epic Games and Digital Extremes. ... Webcal is an unofficial uniform resource identifier (URI) scheme for accessing iCalendar files. ... For the web service tool, see Codehaus XFire . ... “Y!M” redirects here. ...

  Results from FactBites:
 
Https - Wikipedia, the free encyclopedia (671 words)
URL indicates that HTTP is to be used, but with a different default port and an additional encryption/authentication layer between HTTP and TCP.
Strictly speaking, https is not a separate protocol, but refers to the combination of a normal HTTP interaction over an encrypted secure socket layer (SSL) or transport layer security (TLS) transport mechanism.
To prepare a web-server for accepting https connections the administrator must create a public key certificate for the web-server.
  More results at FactBites »


 

COMMENTARY     


Share your thoughts, questions and commentary here
Your name
Your comments
Please enter the 5-letter protection code

Want to know more?
Search encyclopedia, statistics and forums:
 


Lesson Plans | Student Area | Student FAQ | Reviews | Press Releases |  Feeds | Contact
The Wikipedia article included on this page is licensed under the GFDL.
Images may be subject to relevant owners' copyright.
All other elements are (c) copyright NationMaster.com 2003-5. All Rights Reserved.
Usage implies agreement with terms.