{"id":161452,"date":"2025-02-11T10:24:52","date_gmt":"2025-02-11T03:24:52","guid":{"rendered":"https:\/\/it.telkomuniversity.ac.id\/memahami-keamanan-internet-dengan-protokol-ssl\/"},"modified":"2025-02-11T10:24:53","modified_gmt":"2025-02-11T03:24:53","slug":"what-is-ssl","status":"publish","type":"post","link":"https:\/\/it.telkomuniversity.ac.id\/en\/what-is-ssl\/","title":{"rendered":"SSL: Function and How It Works as a Security Protocol"},"content":{"rendered":"

SSL is a Secure Sockets Layer security protocol that is able to securely protect the connection between servers and clients on the internet.\u00a0<\/strong><\/p>\n

What is SSL<\/strong><\/h2>\n

SSL stands for Secure Sockets Layer<\/strong>. It is a security protocol equipped with an encryption process to establish a secure connection between a server and a client on the internet. SSL is also known as Transport Layer Security (TLS)<\/strong>, commonly integrated with an application to protect transmitted data. SSL\/TLS is called through a web server that uses HTTPS<\/strong> or HTTP over TLS<\/strong>. Although SSL has been replaced by Transport Layer Security (TLS)<\/strong>, the term SSL<\/strong> is still commonly used to refer to both protocols.<\/p>\n

Applications that support SSL\/TLS<\/strong> are typically designed to provide server authentication<\/strong> via digital certificates (SSL\u00a0certificate)<\/span>, facilitate key exchange<\/strong> using a public key system<\/strong>, and ensure data confidentiality<\/strong> through session keys protected by standard symmetric key encryption algorithms<\/strong>, such as AES<\/strong>. Additionally, message integrity<\/strong> is validated through the use of message authentication codes.<\/p>\n

The SSL\/TLS\u00a0process<\/strong> begins when the client<\/strong> sends a connection request to an SSL-protected server. The server and client<\/strong> then perform a series of negotiations and exchange digital certificates (<\/strong>ssl certificate)<\/span><\/p>\n

to verify each other\u2019s identity. Once the identity verification is successful, a unique encryption key<\/strong> is established to secure communication between the server and client<\/strong>.<\/p>\n

Using SSL\/TLS\u00a0is crucial in situations such as online transactions, sensitive data exchanges, secure account logins<\/strong>, or whenever privacy and data security<\/strong> are a priority. For example, when you access a website that has the “https”<\/strong> protocol in its URL, it indicates that the site uses SSL\/TLS<\/strong> to maintain security and privacy<\/strong> in communication.<\/p>\n

\n

\"SSLFunctions<\/strong><\/h2>\n

The main function of SSL (Secure Sockets Layer)<\/strong> is to provide security and privacy<\/strong> in communication between a server and a client<\/strong> on the internet. Below are the key functions<\/strong> of SSL:<\/p>\n

1. Data Encryption<\/strong><\/h4>\n

One of SSL\/TLS primary functions is to encrypt<\/strong> data transmitted between the server and client<\/strong>. This encryption process converts the data into an unreadable format, ensuring that unauthorized parties cannot access or manipulate the information.<\/p>\n

2. Authentication<\/strong><\/h4>\n

SSL\/TLS facilitates authentication<\/strong> between the server and client<\/strong>, meaning that both parties can verify each other\u2019s identity. This ensures that communication occurs between legitimate entities<\/strong>. Authentication is performed using digital certificates (SSL <\/strong>certificate) <\/span>issued by a <\/span>trusted certificate authority (CA)<\/strong>.<\/span><\/p>\n

3. Data Integrity<\/strong><\/h4>\n

SSL ensures data integrity<\/strong>, meaning that data transmitted via an SSL connection<\/strong> cannot be altered or manipulated during transmission. Integrity is maintained using hash functions and digital signatures<\/strong>, ensuring that the received data is identical to the sent data.<\/p>\n

4. Protection Against Cyber Attacks<\/strong><\/h4>\n

SSL\/TLS is designed to protect against security threats such as:<\/p>\n