What’s the Difference Between SSL and TLS?

you might be wondering what the difference is between SSL (Secure Socket Layer) and TLS (Transport Layer Security). Interestingly, there’s absolutely no difference.

TSL was introduced as the successor to SSL 3.0 in 1999 and has been designed to solve insecurities in the SSL protocol.

So why do people still say SSL rather than TSL after all this time?

People In the safety sector like SSL so much that they continued to use the acronym and still do to this day. Companies like Comodo did not change the title of SSL certificates to TLS certificates. Software that enables SSL on a server, such as OpenSSL, did not change their name to OpenTSL. The title SSL was ingrained and only stuck.

In terms of assessing the SSL protocol, it appears that it was for political rather than technical factors. Tim Dierks, the Manager of Data Protection in Google writes that From the mid-90s throughout the Netscape and Microsoft browser wars, there was lots of bargaining involved while creating the SSL protocol and — finally — leadership (and ownership) of this standard:

“As a part of the horsetrading, we had to make some changes to SSL 3.0 (so it would not seem the [Internet Engineering Task Force] IETF was just rubberstamping Netscape’s protocol), and we had to rename the protocol (for the same reason). And thus was born TLS 1.0 (that was actually SSL 3.1). And needless to say, in retrospect, the entire thing seems silly.”

And thus TLS was born. But everybody continued to say SSL anyway.

Leave a Reply

Your email address will not be published. Required fields are marked *