October 4th, 2003, 05:01 AM
SSL vs IPSec
SSL vs IPSec
My question is whats the difference b/w SSL and IPSec and also can anyone use both of them at the same time rather simultaneously. Its just like comparing an apple with an ornage is it
Life is like an ice cream enjoy before it melts.
October 4th, 2003, 09:24 PM
I took this from webopedia.com:
Short for Secure Sockets Layer, a protocol developed by Netscape for transmitting private documents via the Internet. SSL works by using a private key to encrypt data that's transferred over the SSL connection. Both Netscape Navigator and Internet Explorer support SSL, and many Web sites use the protocol to obtain confidential user information, such as credit card numbers. By convention, URLs that require an SSL connection start with https: instead of http:.
Another protocol for transmitting data securely over the World Wide Web is Secure HTTP (S-HTTP). Whereas SSL creates a secure connection between a client and a server, over which any amount of data can be sent securely, S-HTTP is designed to transmit individual messages securely. SSL and S-HTTP, therefore, can be seen as complementary rather than competing technologies. Both protocols have been approved by the Internet Engineering Task Force (IETF) as a standard.
Short for IP Security, a set of protocols developed by the IETF to support secure exchange of packets at the IP layer. IPsec has been deployed widely to implement Virtual Private Networks (VPNs).
IPsec supports two encryption modes: Transport and Tunnel. Transport mode encrypts only the data portion (payload) of each packet, but leaves the header untouched. The more secure Tunnel mode encrypts both the header and the payload. On the receiving side, an IPSec-compliant device decrypts each packet.
For IPsec to work, the sending and receiving devices must share a public key. This is accomplished through a protocol known as Internet Security Association and Key Management Protocol/Oakley (ISAKMP/Oakley), which allows the receiver to obtain a public key and authenticate the sender using digital certificates
I don't know if these could be used together, but even if they could there is really no need. Both use a strong encyption standard that is *near* impossible to break. Unless of course you have the money, and how much do think the data you want to double encrypt is worth?
I hate this place, nothing works here, I\'ve been here for 7 years, the medication does\'nt work...