Thursday, October 22, 2009

Chapter 10: SSL and TLS

















































Chapter 10: SSL and TLS




Overview



Having
created discrete secured messages using CMS and S/MIME, it is now time
to turn your attention to the issue of creating secure links over which
you can transfer data and exchange messages.


This chapter looks at SSL and its offspring, TLS. This
family of protocols is very different from protocols like CMS. The main
reason is that they are socket-based and designed to allow the creation
of secured links between two end points for data transmission and
exchange. You are probably already familiar with SSL at some level; you
probably encountered URLs that begin with "https" while buying items
over the Internet. HTTPS connections are created using SSL, but as you
will see, the possible uses for the protocol go much further than that.


The SSL API for Java is referred to as the JSSE (Java
Secure Socket Extension). By the end of this chapter, using the JSSE,
you should




  • Understand the basics of the SSL protocol




  • Know how to create a basic SSL client and server to secure communications




  • Know how to use client-side authentication




  • Know how to access SSL session information




Finally, you will be able to write client-side programs that can use and configure URL connections based on HTTPS.









































No comments: