Hypertext Transfer Protocol Secure or HTTPS is an extension and secure alternative to the HTTP protocol. HTTPS is very same with the HTTP where the traffic is encrypted using TLS or Transport Layer Security.
Hypertext Transfer Protocol Secure或HTTPS是HTTP协议的扩展和安全替代。 HTTPS与HTTP非常相似,在HTTP中使用TLS或传输层安全性对流量进行加密。
All major browsers like Google Chrome, Mozilla Firefox, Apple Safari, Opera, Microsoft Edge supports the HTTPS protocol. HTTPS also referred as HTTP over SSL or HTTP over TLS.
所有主要的浏览器,例如Google Chrome,Mozilla Firefox,Apple Safari,Opera,Microsoft Edge,都支持HTTPS协议。 HTTPS也称为HTTP over SSL或HTTP over TLS。
HTTPS uses the https://URI scheme. The same web page can be served via HTTP and HTTPS without changing the URL or any URL related configuration.
HTTPS使用https:// URI方案。 可以通过HTTP和HTTPS提供相同的网页,而无需更改URL或任何与URL相关的配置。
HTTPS如何工作? (How HTTPS Works?)
HTTPS uses encryption in order to protect and hide traffic from the attacker or man in the middle attacks. HTTPS will create a transport layer with the TLS or SSL which is previous version. This transport layer will be used to transmit the HTTP traffic where during the transmission the traffic will be encrypted automatically. In order to encrypt the traffic two type of keys are used.
HTTPS使用加密来保护和隐藏来自中间攻击者或攻击者的流量。 HTTPS将使用先前版本的TLS或SSL创建传输层。 此传输层将用于传输HTTP流量,在传输过程中流量将被自动加密。 为了加密通信量,使用了两种类型的密钥。
Private Key/Certificate is located on the server side which serves the web page and used to decrpyt the client traffic which is encrypted with the “Public Key/Certificate”.
Private Key/Certificate位于服务于网页的服务器端,用于解密使用“公钥/证书”加密的客户端流量。
Public Key/Certificate is provided to all clients via certificate repositories or web browsers and used to encrypt the traffic to the server. The public key encrypted data can be only decrypted with the private key.
Public Key/Certificate通过证书存储库或Web浏览器提供给所有客户端,并用于加密到服务器的流量。 公钥加密的数据只能用私钥解密。
HTTPS的优势和用例 (HTTPS Advantages and Use Cases)
HTTPS provides big advatanges which makes it the one of the most popular protocol on the today web. Below we will provide advantages and use cases for the HTTPS.
HTTPS提供了很多优势,使其成为当今网络上最受欢迎的协议之一。 下面我们将提供HTTPS的优势和用例。
Security: Security is the biggest advantage provided by the HTTPS protocol. HTTPS encrypted data can be only understandable by the private certificate owner and no others can understand the content of the HTTPS.
Security :安全性是HTTPS协议提供的最大优势。 HTTPS加密的数据只能由私有证书所有者理解,而其他任何人都不能理解HTTPS的内容。
Prevent Man In The Middle: Actually HTTPS does not prevent man in the middle attacks but makes the MITM attack ineffective where the attacker can not understand the traffic is captured.
Prevent Man In The Middle :实际上,HTTPS不会阻止中间人攻击,但是会使MITM攻击无效,因为攻击者无法理解捕获到的流量。
Prevent Phishing : HTTPS will prevent web site phishing where only valid web pages and domain names will be granted with a green address bar or certificate icon.
Prevent Phishing :HTTPS将阻止网站网络钓鱼,在这种情况下,只有有效的网页和域名将被授予绿色地址栏或证书图标。
SEO : Google started to increase ranking of the web sites with a HTTPS certifcate becuase they are assumed more reliable and secure.
SEO :Google开始使用HTTPS证书提高网站的排名,因为它们被认为更加可靠和安全。
Data Integrity : Data integrity is another advantage of the HTTPS certificate where if the data is changed during transmission the decryption will fail and stop which will prevent damaged data to be used.
Data Integrity :数据完整性是HTTPS证书的另一个优点,如果在传输过程中更改了数据,解密将失败并停止,这将阻止使用损坏的数据。
什么是SSL / TLS证书? (What Is SSL/TLS Certificate?)
The main technology used in HTTP is SSL/TLS certificate. SSL/TLS is two versions for certificates where TLS is predecessor and SSL is the latest version. SSL/TLS certificates are issued to the domain names and used for only issued domain and purpose. Below you can see an SSL/TLS certificate which provide basic information in “General” tab.
HTTP中使用的主要技术是SSL / TLS证书。 SSL / TLS是证书的两个版本,其中TLS是SSL的前身,而SSL是最新的版本。 SSL / TLS证书颁发给域名,并且仅用于颁发的域和目的。 在下面,您可以在“常规”选项卡中看到提供基本信息的SSL / TLS证书。
Details about the SSL/TLS can be viewed from “Details” tab. Details provides information about Version, Serial number, Signature algorithm, Issuer, Valid from, Valid to,subject etc.
可以从“详细信息”选项卡查看有关SSL / TLS的详细信息。 详细信息提供有关版本,序列号,签名算法,颁发者,有效期自,有效期至,主题等的信息。
The encryption algorithm is provided in the “Public Key” part which will encrypt the HTTP traffic.
“公钥”部分提供了加密算法,该算法将对HTTP通信进行加密。
查找HTTPS证书提供者 (Find HTTPS Certificate Provider)
HTTPS certificates are issued to the domain names and owners by the certificate authorithies. Certificate authorities or CA’s signs the certificate and used to check validity of the HTTPS certificate. The HTTPS certificate provider is provided as SSL/TLS certificate screen.
HTTPS证书由证书颁发机构颁发给域名和所有者。 证书颁发机构或CA在证书上签名,并用于检查HTTPS证书的有效性。 HTTPS证书提供程序作为SSL / TLS证书屏幕提供。
如何检查网站是否使用HTTPS?(How To Check If Website Uses HTTPS?)
We can check the HTTPS connection and if it is used by the current web page from the browser address bar. If the web site is using valid HTTPS certificate the following signs will be shown.
我们可以从浏览器地址栏中检查HTTPS连接以及当前网页是否使用了HTTPS连接。 如果网站使用有效的HTTPS证书,将显示以下标志。
- A lock will be shown in the start of the address bar. 地址栏的开始将显示一个锁。
- “Connection is secure” message will be shown when click to the lock icon in a green color. 单击绿色的锁定图标时,将显示“连接安全”消息。
- “Certificate (valid)” will be shown like below. 如下所示将显示“证书(有效)”。
For this example, we can see that there is a lock icon at the start of the address bar and when we click on it we see the text “Connection is secure” which is in green color. The green color is a visual message in order to show this site has a valid and secure HTTPS connection. We can also see that “Certificate (Valid)” in this infobox.
对于此示例,我们可以看到在地址栏的开始处有一个锁定图标,当我们单击它时,我们看到绿色的文本“ Connection is secure”。 绿色是视觉消息,目的是显示此站点具有有效和安全的HTTPS连接。 我们还可以在此信息框中看到“证书(有效)”。
As a negative or non-HTTPS example, we can take a look popular Chine search engine named Baidu which can be accessed from http://www.baidu.com/ . We can see that also its URL starts with HTTP, not HTTPS. When we take a look at the start of the address bar we can see the Not Secure message. Also, there is another message “Your connection to this site is not secure” colored in red.
作为否定或非HTTPS的示例,我们可以看一下一个流行的Chine搜索引擎,名为Baidu,可以从http://www.baidu.com/进行访问。 我们可以看到它的URL也以HTTP而不是HTTPS开头。 当我们查看地址栏的开头时,我们会看到“ Not Secure消息。 另外,还有一条红色消息“您与该站点的连接不安全”。
133万+
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
