Secure Sockets Layer and Transport Layer Security

Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocol help provide privacy over a network. Universal Connection creates a certificate store that contains trusted Certificate Authority Certificates for use by SSL or TLS. Some service applications use SSL or TLS to protect the service information that flows to IBM.

The objective of TLS protocol and its predecessor SSL is to provide privacy over the Internet. TCP/IP client and server applications that are SSL-enabled can communicate in a way that prevents eavesdropping, tampering, or message forgery. These protocols (including SSL and TLS) provide encryption, integrity, and authentication.

TLS is an evolutionary upgrade of the SSL Version 3.0 protocol. TLS provides the same function as SSL with additional features and clarifications of protocol flows for areas that are ill-defined by the SSL protocol definition. The major goal of TLS is to standardize the SSL definitions and implementations to make the SSL protocol more secure, and to make the specification of the protocol more concise and complete.

The SSL or TLS protocol consists of two separate protocols: the record protocol and the handshake protocol. The handshake protocol is encapsulated within the record protocol. The SSL handshake establishes a secure connection between the client and the server.

Universal Connection creates a certificate store for use by SSL and you do not need to change this item. In addition, some Universal Connection applications and flows are protected using SSL or TLS.