SSL

Stands for "Secure Socket Layer."

SSL is a technology for authenticating and encrypting data transfers over the Internet. It encrypts data transfers between a user's web browser and remote web servers, protecting user data like login credentials and credit card numbers. SSL was first released to the public in 1995 and was replaced in 1999 by a successor technology called TLS — although the successor is often also referred to as SSL.

SSL encrypts data traveling over the Internet to protect it from eavesdropping by other devices along the route. The HTTPS protocol uses SSL and TLS to secure regular web traffic, and other protocols for email (SMTP and IMAP), VPN connections, and file transfers (FTPS) also use it to encrypt and protect data. SSL uses authentication certificates (called SSL certificates) to authenticate the identities of the web server and its owner and administrator.

When first introduced, SSL was primarily used by e-commerce websites to protect a customer's credit card number, address, and other personal information during transactions. It was also used to obscure the username and password used during the login process for any site that allowed users to create accounts. Eventually, many websites started using SSL encryption for all data transfers between a client and server to keep browsing activity private thanks to incentives by search engines (who would reward secure sites by placing them higher in search results) and web browsers (which began labeling sites not using SSL as "not secure").

SSL vs TLS

SSL technology was replaced in 1999 by the release of TLS 1.0. TLS addressed several shortcomings and vulnerabilities present in SSL. The first few releases of TLS were backward compatible with SSL, allowing older web browsers and website hosts to continue operating using a lower level of security. TLS 1.2, released in 2008, finally removed backward compatibility after nearly a decade of support.

TLS improves on the earlier SSL technology in several ways. It streamlined the handshake process to require fewer steps and speed up connections. It also uses more modern encryption algorithms like AES and ChaCha20-Poly1305 instead of the older DES and RC4 algorithms used by SSL.

Updated December 14, 2023 by Brian P.

quizTest Your Knowledge

What was DNSSEC created?

A
To simplify DNS management
0%
B
To make DNS lookups faster
0%
C
To improve DNS security
0%
D
To make DNS compatible with IP6
0%
Correct! Incorrect!     View the DNSSEC definition.
More Quizzes →

The Tech Terms Computer Dictionary

The definition of SSL on this page is an original definition written by the TechTerms.com team. If you would like to reference this page or cite this definition, please use the green citation links above.

The goal of TechTerms.com is to explain computer terminology in a way that is easy to understand. We strive for simplicity and accuracy with every definition we publish. If you have feedback about this definition or would like to suggest a new technical term, please contact us.

Sign up for the free TechTerms Newsletter

How often would you like to receive an email?

You can unsubscribe or change your frequency setting at any time using the links available in each email.

Questions? Please contact us.