Home/Glossary/TLS/SSL (Transport Layer Security / Secure Sockets Layer)

TLS/SSL (Transport Layer Security / Secure Sockets Layer)

Cryptographic protocols that provide secure communication over networks by encrypting data in transit.

CryptographyAlso called: "ssl", "tls", "https", "secure sockets layer", "transport layer security"

TLS (and its predecessor SSL) encrypt network traffic to protect confidentiality and integrity between clients and servers.

Protocol evolution

  • SSL 1.0: Never released (security flaws).
  • SSL 2.0/3.0: Deprecated (POODLE, BEAST attacks).
  • TLS 1.0/1.1: Deprecated as of 2021.
  • TLS 1.2: Current minimum standard.
  • TLS 1.3: Latest version with improved performance and security.

How TLS works

  • Handshake establishes secure connection and negotiates cipher suite.
  • Public key cryptography authenticates server (and optionally client).
  • Symmetric encryption protects data after handshake completes.
  • Message authentication codes (MAC) verify data integrity.

Common uses

  • HTTPS for secure web browsing.
  • Email encryption (SMTPS, IMAPS).
  • VPN tunnels and secure file transfers.
  • API authentication and data exchange.

Implementation checklist

  • Use TLS 1.2 or higher; disable SSL and TLS 1.0/1.1.
  • Obtain certificates from trusted Certificate Authorities.
  • Enable HTTP Strict Transport Security (HSTS) to force HTTPS.
  • Configure strong cipher suites and disable weak algorithms.
  • Monitor certificate expiration and implement automated renewal.

Related Tools

Related Articles

View all articles
30 Cloud Security Tips for 2026: Essential Best Practices for Every Skill Level

30 Cloud Security Tips for 2026: Essential Best Practices for Every Skill Level

Master cloud security with 30 actionable tips covering AWS, Azure, and GCP.

Read article →
CORS Security Guide: Preventing Cross-Origin Attacks and

CORS Security Guide: Preventing Cross-Origin Attacks and

Learn how to implement secure CORS policies, avoid common misconfigurations like wildcard origins and origin reflection, and protect your APIs from cross-origin attacks.

Read article →
HIPAA Security Assessment & Gap Analysis Workflow

HIPAA Security Assessment & Gap Analysis Workflow

Systematic workflow for conducting comprehensive HIPAA Security Rule assessments, identifying compliance gaps, and preparing for OCR audits in 2025.

Read article →
Vulnerability Management & Patch Prioritization Workflow

Vulnerability Management & Patch Prioritization Workflow

Master the complete vulnerability management lifecycle with risk-based patch prioritization. From discovery to remediation, learn how to protect your infrastructure before attackers strike.

Read article →

Explore More Cryptography

View all terms

Caesar Cipher (ROT13)

A simple substitution cipher that shifts letters by a fixed number of positions in the alphabet.

Read more →

Cipher Algorithm

A mathematical procedure for encrypting and decrypting data to protect confidentiality.

Read more →

Cryptographic Hash Function

A one-way mathematical algorithm that converts data into a fixed-size string, used for integrity verification and password storage.

Read more →

Encryption

The process of converting readable data (plaintext) into an unreadable format (ciphertext) using mathematical algorithms, protecting confidentiality.

Read more →

Entropy (Cryptographic)

A measure of randomness or unpredictability in data, critical for generating secure cryptographic keys, passwords, and tokens that resist guessing attacks.

Read more →

mTLS (Mutual TLS)

A security protocol where both client and server authenticate each other using X.509 certificates, providing bidirectional identity verification beyond standard TLS.

Read more →
Back to glossary