HTTP, HTTPS and SSL/TLS Certifications

-

In this post I'm going to be explaining HTTP, HTTPS and SSL / TLS. HTTP is the protocol that helps us browse the Internet.

 So lets start in 1989 a guy called Tim berners-lee who worked for CERN started development of HTTP. HTTP stands for HyperText Transfer Protocol and is used to exchange our transfer hypertext. HTTP resides on the application layer of the OSI model on layer 7. HTTP is the foundation of data communication for the web and this is how the web works when it comes to delivering webpages. 


Let's dig a little deeper into this protocol it is a TCP / IP based protocol and things such as images tags documents audio and video can all be transmitted through it. HTTP works on a request and response cycle where the client requests a webpage so for example if you browse to Google Daugherty UK you are requesting a web page from the server and the server will deliver you a response. 


HTTP is a stateless protocol what this means is that the server does not have to retain information or status about each user for the duration of multiple requests, however this can be achieved by using hitch or cookies or server-side sessions variables and URL rewriting. 

 When a client wants to browse a website the first thing that happens is a request is sent to the server known as a HTTP. Message will be sent to the server and it will prepare a response and send it back. A HTTP message is made of free blocks known as the start line headers and the body. The HTTP message will be different depending on if it's message or a response or a request. 


An example of a request HTTP message is the start line contains the method URI and HTTP version , the headers are named value pairs and there is no body because this is a request. Let's take a look at the start line the method is like a command that is given to the server so the server knows what to do in this case it is get. The two most important ones that you will have likelihood is get and post. The next bits of the message is the URl which stands for Uniform Resource identifier which basically is aware that the server can locate a resource, we next have the version of HTTP the client is using . 

 The main issue of HTTP is that it's unencrypted meaning it is insecure at transferring data between your computer and a server it is popular to exploiting the man-in-the-middle attacks and  if you're on a huge TCP connection anyone can put themselves in the middle and snag user names emails passwords in plain text , credit card numbers etc. Which is why it's important that HTTPS is used. 

 We will now talk about HTTPS as you now know what HTTP is and also the technical aspects about it. The S in HTTPS stands for secure. Over names given to this protocol are HTTP over TLS , HTTP over SSL and HTTP secure. This protocol was designed to increase privacy on the internet when communicating with websites and sending sensitive data. This made man-in-the-middle attacks increasingly difficult as the data sent was no longer in plaintext, it was used to be found on payment transactions or on banking websites .But now it is now widely used on many web sites such as Google, Facebook, Twitter. 


To secure your website you're going to need to purchase something called an SSL certificate these are relatively inexpensive and most hosting companies will offer them or a location where you can get one. An SSL certificate is like an online identification card , SSL certificates also encrypts any data that is passed through the HTTPS protocol . Now when a client requests data from the server it looks at the SSL certificate which will verify the website's identity with the certificate authority, if everything is good a handshake takes place where an encryption method is decided through SSL known as a secure socket layer. 

 Now when data  is sent to and from the client and server it is encrypted and decrypted but if a man-in-the-middle attack takes place this data is encrypted and unreadable.

Comments

Post a Comment

Popular posts from this blog

Feel your Dream World Come Alive with Augmented Reality!

-
Image
Feel your Dream World Come Alive with Augmented Reality! This phenomenal new technology is taking the way we see things to a whole new level. The more refined version of it is being launched to enhance the experience in different spheres of entertainment, medical practice, military application and even shopping. The idea behind augmented reality is to enhance your present reality by inducing virtual information to it. Unlike Virtual Reality, AR simply amplifies the way you see, hear or touch things in your natural surrounding making it a mixed reality experience. Through this, you need not inhabit fabricated an entirely different world but only see the world you live in differently. There are several versions of how the technology is being utilized which is opening up various other applications. With the help of a digital compass, velocity meter or accelerometer as well as GPS there is a wide range of software apps that are being used for putting up virtual ma...
Read more

The Internet of Things : Future tech for all

-
Image
The Internet of Things What is the one thing that is common between a smart TV, Fitbit and a Thermostat? Although one is not like the other, they have all got one thing in common. They are all connected by this VAST network consisting of numerous devices and objects called The Internet of Things (IoT). The Internet of Things is a system of interrelated computing devices, both mechanical and digital, that have the ability to transfer specific data over a network with little to no Human Intervention. In a nutshell, the Internet of Things is a concept of interconnecting many devices through the internet. The IoT is a GIANT network of connected things and even people, all of which share data about their environmental and internal changes. It includes objects all the way from a smart coffee pot which automatically prepares your coffee at your call to the wearable fitness device that can measure your heart rate and the number of calories you’ve burnt in a day. The IoT is bec...
Read more

ARTIFICIAL INTELLIGENCE :BOON OR BANE

-
Image
Back in the year 2005, If a scientist created a fuss about two robots talking to each other, in a language unknown to mankind, the so called society wouldn’t believe him. But here we are! It’s the year 2017, We have come across the exact same problem as mentioned. Half past this year, Facebook abandoned an experiment after two artificially intelligent programs appeared to be chatting to each other in a strange language only they understood. The two robots came to create their own changes to English that made it easier for them to work. This “robot language” was not only a mystery but also very peculiar. This experiment started as an attempt to try and negotiate two robots to make a trade, exchange hats, balls, books.  All these activities were carried out by giving a certain value to each of the robots .The robots had been instructed to work out how to negotiate between themselves, and improve their bartering as they went along. But this experiment took a dram...
Read more

offer