Skip to main content
Home/Glossary/TLS/SSL (Transport Layer Security / Secure Sockets Layer)

TLS/SSL (Transport Layer Security / Secure Sockets Layer)

Cryptographic protocols that provide secure communication over networks by encrypting data in transit.

CryptographyAlso called: "ssl", "tls", "https", "secure sockets layer", "transport layer security"

TLS (and its predecessor SSL) encrypt network traffic to protect confidentiality and integrity between clients and servers.

Protocol evolution

  • SSL 1.0: Never released (security flaws).
  • SSL 2.0/3.0: Deprecated (POODLE, BEAST attacks).
  • TLS 1.0/1.1: Deprecated as of 2021.
  • TLS 1.2: Current minimum standard.
  • TLS 1.3: Latest version with improved performance and security.

How TLS works

  • Handshake establishes secure connection and negotiates cipher suite.
  • Public key cryptography authenticates server (and optionally client).
  • Symmetric encryption protects data after handshake completes.
  • Message authentication codes (MAC) verify data integrity.

Common uses

  • HTTPS for secure web browsing.
  • Email encryption (SMTPS, IMAPS).
  • VPN tunnels and secure file transfers.
  • API authentication and data exchange.

Implementation checklist

  • Use TLS 1.2 or higher; disable SSL and TLS 1.0/1.1.
  • Obtain certificates from trusted Certificate Authorities.
  • Enable HTTP Strict Transport Security (HSTS) to force HTTPS.
  • Configure strong cipher suites and disable weak algorithms.
  • Monitor certificate expiration and implement automated renewal.

Related Tools

Related Articles

View all articles
📄

How to Use Claude Code From Your Phone With /remote-control

Claude Code's Remote Control feature lets you steer a coding session running on your machine from your phone, tablet, or browser. Here's how to set it up, when it beats Claude Code on the web, and the security model behind it.

Read article →
📄

Gemini CLI Is Being Retired on June 18 — Meet Antigravity CLI

Google is deprecating Gemini CLI and moving developers to the new Antigravity CLI on June 18, 2026. Here's what's actually changing, who's affected, the CI/CD landmine to watch for, and how to migrate before your scripts break.

Read article →
📄

Claude Code's Security-Guidance Plugin: Shift-Left Security That Fixes Code as You Write It

Anthropic's free security-guidance plugin makes Claude Code review and fix vulnerabilities in the same session. Here's what it catches, how to install it, and how to roll org-wide rules across your team.

Read article →
📄

Is Qwen Code Still Free? The 2026 Free-Tier Shutdown (and 3 Free Alternatives)

Alibaba killed Qwen Code's free OAuth tier on April 15, 2026. Here's exactly what changed, what the paid Coding Plan costs, and three ways to keep running Qwen3-Coder for free.

Read article →

Explore More Cryptography

View all terms

Caesar Cipher (ROT13)

A simple substitution cipher that shifts letters by a fixed number of positions in the alphabet.

Read more →

Cipher Algorithm

A mathematical procedure for encrypting and decrypting data to protect confidentiality.

Read more →

Cryptographic Hash Function

A one-way mathematical algorithm that converts data into a fixed-size string, used for integrity verification and password storage.

Read more →

Encryption

The process of converting readable data (plaintext) into an unreadable format (ciphertext) using mathematical algorithms, protecting confidentiality.

Read more →

Entropy (Cryptographic)

A measure of randomness or unpredictability in data, critical for generating secure cryptographic keys, passwords, and tokens that resist guessing attacks.

Read more →

mTLS (Mutual TLS)

A security protocol where both client and server authenticate each other using X.509 certificates, providing bidirectional identity verification beyond standard TLS.

Read more →
Back to glossary