SSL/TLS 早已不是陌生的词汇,然而其原理及细则却不是太容易记住。本文将试图通过一些简单图示呈现其流程原理,希望读者有所收获。
一、相关版本
Version
Source
Description
Browser Support
SSL v2.0
Vendor Standard
(from Netscape Corp.) [SSL2]
First SSL protocol for which implementations exist
- NS Navigator 1.x/2.x
- MS IE 3.x
- Lynx/2.8+OpenSSL
SSL v3.0
Expired Internet Draft
(from Netscape Corp.) [SSL3]
Revisions to prevent specific security attacks, add non-RSA ciphers and support for certificate chains
- NS Navigator 2.x/3.x/4.x
- MS IE 3.x/4.x
- Lynx/2.8+OpenSSL
TLS v1.0
Proposed Internet Standard
(from IETF) [TLS1]
Revision of SSL 3.0 to update the MAC layer to HMAC, add block padding for block ciphers, message order standardization and more alert messages.
-Lynx/2.8+OpenSSL