Saturday, 29 March 2014

Difference between http and https..?

I know most people don't know exactly what's the difference between these two protocols. So, I thought I would explain you guys a lil.. :)

Lets start then....

HTTP is Hyper Text Transform Protocol and is transmitted over the wire via PORT 80(TCP). You use HTTP when you are browsing the web. It is encrypted using SSL, meaning that your session cannot be observed by a third party. 

HTTPS (Hypertext Transfer Protocol over Secure Socket Layer, or HTTP over SSL) is a Web protocol developed by Netscape and built into its browser that encrypts and decrypts user page requests as well as the pages that are returned by the Web server. HTTPS is really just the use of Netscape's Secure Socket Layer (SSL) as a sublayer under its regular HTTP application layering. (HTTPS uses port 443 instead of HTTP port 80 in its interactions with the lower layer, TCP/IP.) SSL uses a 40-bit key size for the RC4 stream encryption algorithm, which is considered an adequate degree of encryption for commercial exchange. 
Although it may be encrypted does not mean its safe, there are tools out there to decrypt the information being sent over the wire, although its more difficult to do so.

Note - The icon of the lock that appears in your browser's status bar when you establish an https connection. You can click this icon to view the details of the connection, and to identify with whom you are connecting.

Protocol Villa:
Amish Trivedi

No comments:

Post a Comment