Flux rss
They need your help
Secure Shell (SSH)

Cryptography - Secure HTTP

The SET protocol
Bookmark Bookmark & Share
Criptografia - Secure HTTP (S-HTTP) Criptografia - Secure HTTP Kryptographie - Secure HTTP (S-HTTP) Cryptographie - Secure HTTP Criptografía - HTTP Seguro

Introduction to S-HTTP

S-HTTP (Secure HTTP) is a process that protects HTTP transactions and is based on an improvement to the HTTP protocol that was made in 1994 by EIT (Enterprise Integration Technologies). It makes it possible to establish a secure connection for e-commerce transactions by encrypting messages to guarantee customers that their bank card numbers and other personal information will remain confidential. One implementation of S-HTTP was developed by the company Terisa Systems to include a secure connection on web servers and browsers.

How S-HTTP works

Unlike SSL, which works on transport layers, S-HTTP guarantees message-based security using the HTTP protocol, by individually marking HTML documents with certificates. Whereas SSL is independent of the application used and encrypts all of the communication, S-HTTP is closely related to the HTTP protocol and individually encrypts each message.

S-HTTP messages are based on three components:

  • The HTTP message
  • The sender's cryptographic preferences
  • The recipient's preferences

As such, to decrypt an S-HTTP message, the message's recipient analyzes the message's headers to determine the type of method that was used to encrypt the message. Then, based on his current and past cryptographic preferences and on the sender's past cryptographic preferences, he is able to decrypt the message.

The complementary nature of S-HTTP and SSL

When SSL and S-HTTP were competitors, many people realized that the two security protocols were complementary, given that they do not work at the same level. SSL guarantees a secure internet connection whereas S-HTTP guarantees secure HTTP exchanges.

As a result, the company Terisa Systems, specialized in network protection, made of RSA Data Security and EIT, developed a development kit making it possible for developers to develop Web servers implementing SSL and S-HTTP (SecureWeb Server Toolkit), as well as Web clients using these protocols (SecureWeb Client Toolkit).

Last update on Thursday October 16, 2008 02:43:17 PM.This document entitled « Cryptography - Secure HTTP » from Kioskea (en.kioskea.net) is made available under the Creative Commons license. You can copy, modify copies of this page, under the conditions stipulated by the licence, as this note appears clearly.

Cryptography - Secure Sockets Layers (SSL) Introduction to SSL SSL (Secure Sockets Layers) is a process that manages the security of transactions made on the Internet. The SSL standard was developed by Netscape, together with Mastercard, Bank of America, MCI and Silicon Graphics. It is... en.kioskea.net/contents/crypto/ssl.php3
Private-key (or secret-key) cryptography Symmetric encryption Symmetric encryption (also called private-key encryption or secret-key encryption) involves using the same key for encryption and decryption. Encryption involves applying an operation (an algorithm) to the data to be... en.kioskea.net/contents/crypto/cleprivee.php3
Download SSH Secure Shell SSH secure shell for workstations is a flexible client SSH allowing to connect in a secured way to remote applications. http://www.commentcamarche.net/faq/images/NHc6wz5jOYBhPXTis.png en.kioskea.net/telecharger/telecharger-1423-ssh-secure-shell
Installing an easy HTTP proxy-cache (polipo)Installing an easy HTTP proxy-cache (polipo) Intro Quick Installation Allowing hosts on the LAN to connect Changing the port Use a proxy server parent Using an alternative DNS server Disabling IPv6 More info Intro Installing an... en.kioskea.net/faq/sujet-805-installing-an-easy-http-proxy-cache-polipo
Online scanning using F-secureOnline scanning using F-secure Get Internet Explorer and go to: http://www.f-secure.com/en_EMEA/support/ Go to bottom of page and click on "Start scanning" A message appears: Do not panic, click "OK": Note the little warning... en.kioskea.net/faq/sujet-2276-online-scanning-using-f-secure
Primary DNS and Secondary DNSPrimary DNS and Secondary DNS The DNS service enables you to type names like en.kioskea.net instead of writing the IP address of your machine whenever you connect to the computer. To achieve this configuration, special servers are... en.kioskea.net/faq/sujet-904-primary-dns-and-secondary-dns
Results for Cryptography Secure HTTP
Remove system security (Solved)Hello, I also have a problem with my desktop being infected by "security system". I also need directions on how to destroy it. any help? Margie22 en.kioskea.net/forum/affich-59028-remove-system-security
Kaspersky internet security 2009 instalation (Solved)Hello, I bought kaspersky internet security2009 to install in my lenovo laptop when i insert the cd it will show remove other antivirus programmes avg,avast 8 detected when i go to the programme remove panel the above antivirus programmes are not... en.kioskea.net/forum/affich-59568-kaspersky-internet-security-2009-instalation
You have a security problem (Solved)Hello, I have an issue with my PC (Windows XP), I have a popup that states "You have a security problem" and attempts to sell me new virus protection. I have McAfee already installed and I have run a scan for a virus but it did not pick up anything.... en.kioskea.net/forum/affich-30169-you-have-a-security-problem
Results for Cryptography Secure HTTP
Download Eset Smart SecurityAntivirus, antispyware, antispam, firewall: all-in-one! We cannot find a simple protection! Based on NOD32 antivirus, extremely little greedy in resources! Eset Smart Security is a protection solution to be tried! en.kioskea.net/telecharger/telecharger-2190-eset-smart-security
Download Zero Footprint CryptZero Footprint Crypt is a powerful program of encryption. In some minutes you will be capable of crypt and of hiding sensitive files; more need to care you of spies and eyes.The interface of the user is intuitive with an explorer allowing even to the... en.kioskea.net/telecharger/telecharger-507-zero-footprint-crypt
Download ZoneAlarm Security SuiteZoneAlarm Security Suite is a complete protection for your PC with a single complete program. It drives away viruses, blocks spam and removes definitively spyware from your PC. ZoneAlarm Internet Security Suite is not contented with eradicating... en.kioskea.net/telecharger/telecharger-3407-zonealarm-security-suite
Results for Cryptography Secure HTTP
Trend Micro Internet Security 2009 - Complete package + 1 Year Maintenance - 3 users - DVD - Win - EWith Trend Micro Internet Security, you no longer need to choose between computer performance and maximum protection. Get smart, proven security that never sleeps, guarding your PC from the latest threats while giving you the freedom to browse and... en.kioskea.net/guide/655237480-trend-micro-internet-security-2009-complete-package-1-year-maintenance-3-users-dvd-win-english
Trene Micro, Inc. Trend Internet Security Pro 2009 2 Year License (PC CD)Inc ., Whether you are at home or on the go Trend Micro PC-cillinInternet Security Pro 2009 safeguards your online transactionsidentity and irreplaceable files with the most comprehensiveprotection available. Get all the benefits of our proven... en.kioskea.net/guide/591565108-trene-micro-inc-trend-internet-security-pro-2009-2-year-license-pc-cd
Kaspersky Lab Kaspersky Internet Security 2009, 3-Desktop, 1 year Renewal Subscription (PC)INTERNET SECURITY 2009 3 USER en.kioskea.net/guide/451197104-kaspersky-lab-kaspersky-internet-security-2009-3-desktop-1-year-renewal-subscription-pc
Results for Cryptography Secure HTTP
Conficker worm active, security experts sayA man surfs the Internet in Beijing. The Conficker worm, believed to have burrowed into millions of computers around the world, has sent an encrypted data message to infected machines, according to a computer security firm. The Conficker worm,... en.kioskea.net/actualites/conficker-worm-active-security-experts-say-12512-actualite.php3
Results for Cryptography Secure HTTP
The HTTP protocolIntroduction to the HTTP protocol Since 1990 HTTP protocol (HyperText Transfer Protocol) has been the most widely used protocol on the Internet. Version 0.9 was only intended to transfer data over the Internet (in particular Web pages written in... en.kioskea.net/contents/internet/http.php3
Security Policies in Windows NTUnderstanding the notion of policy Security policy is the set of all security rules that are to be implemented in an organisation, and the ways in which they are implemented. The user manager located in the Start Menu (Programs/Administration... en.kioskea.net/contents/winnt/ntstrat.php3
Information security officer (ISO)Information security officer (ISO) An ISO (information security officer) is in charge of setting and a company's security policy. He/she also plays a critical role in informing, advising, and alerting the general management on matters relating to... en.kioskea.net/contents/metiers-informatique/rssi-responsable-securite.php3
Results for Cryptography Secure HTTP