HTTP & HTTPs
- 1. Subject: Web Design and Programming Lecturer: Ahmed Ali Saihood 1 Chapter 1 Part II HTTP & HTTPS What is the meaning of HTTP? The Hypertext Transfer Protocol (HTTP) is an application protocol for distributed, collaborative, hypermedia information systems. HTTP is the foundation of data communication for the World Wide Web. Hypertext is structured text that uses logical links (hyperlinks) between nodes containing text. َْٕظبوَقميٕاداإلَخشَجعبشانشبكتانعُكبٕحٛت(انٕٚب)،ْٕٔانطشٚقتانشئٛستٔاألكثش اَخشبسانُقمانبٛبَبثٙفانٕٚب(www).انٓذفٙاألسبسٍيّبُبئٌكبإٚجبدطشٚقتنُشش ٔاسخقببلصفحبثHTML. ٍْٕٔيانطبقتانخبيستنُظبوTCP/IPْٙٔطبقتانخطبٛقبثٔٚسخخذوٍيقبميخصفحبث اإلَخشَجٙٔانخًٗحسعًٛمانًسخخذوuser-agentٔٚسخخذوانًذخمسقى08ٗعهانًخذو غبنبب. ٚقٕو،انًخصفح٘ٔانزٚفٓىَظبو(انبشٔحٕكٕل)،جٛذابإسسبلطهبٗإنانًخذوعبش يهفيُخظشاَخٛجتانطهبٌٕٔٚكرنكانطهبيٕجٓبغبنببنـ(انًُفزPort)سقى08 ٗعه،انخبدؤْٕانًُفز٘انزٚقٕوانًخذوّبخٓٛئخالسخقببليثمِْزانطهببث. ٗٚخهقانًخذوانطهبٔٚقٕوببنشدّٛعهبشسبنتٌٕحخكٍيعذةأجضاء(سأطَخٛجت انطهبثىَخٛجتانطهبٔأّيحخٕٚبحانًطهٕبت)ٔٚخىّٛحٕجحهكانشسبنتٗإنجٓبص انعًٛميشةٖأخشٗعه٘أيخشجportفبسغٙفجٓبصانعًٛمٔغبنببٌٕيبٚكسقى انًخشجٗأعهٍي4801حٛثٌأاألسقبوأسفمرنكانشقىيخصصتألغشاضيعشٔفت ِٔيحذد.
- 2. Subject: Web Design and Programming Lecturer: Ahmed Ali Saihood 2 What is SSL? SSL Certificate Basics? What is SSL? SSL is an Secure Sockets Layer, an encryption technology that was created by Netscape. SSL creates an encrypted connection between your web server and your visitors' web browser allowing for private information to be transmitted without the problems of eavesdropping, data tampering, or message forgery. To enable SSL on a website, you will need to get an SSL Certificate that identifies you and install it on the server. The use of an SSL certificate on a website is usually indicated by a padlock icon in web browsers but it can also be indicated by a green address bar. Once you have done the SSL install, you can access a site securely by changing the URL from http:// to https://. When an SSL certificate is installed on a website, you can be sure that the information you enter (contact or credit card information), is secured and only seen by the organization that owns the website. The Difference Between Http and Https? First HTTP: HTTP means Hyper Text Transfer Protocol. Whenever we open up a website we use this protocol. The client asks the server to open communication on port 80. The server does that and opens port 80 and at the client side several random ports are opened. Is HTTP secure? HTTP is absolutely not secure. If someone would use a MITM (Man In The Middle) attack and search with Wireshark the attacker would easily gain access to your account. Packet data send with HTTP is NOT encrypted. That's why it's so easy to crack into a session using MITM and Wireshark.
- 3. Subject: Web Design and Programming Lecturer: Ahmed Ali Saihood 3 Then HTTPS HTTPS is a combination of HTTP (Hyper Text Transfer Protocol) and SSL (Secure Socket Layer protocol) / TLS (Transport Layer Security). HTTPS is mainly used for internet banking, payment transactions and login pages. It's goal is to provide maximum security for web pages that send secure information. HTTPS works the same as HTTP but it has encryption on top of it. HTTPS works like this: Is HTTPS secure? HTTPS is secure. if someone would use the same method as with HTTP , then the attacker would only get Encrypted information as seen above. Conclusion: My conclusion would be that whenever you can USE HTTPS!!! HTTPS is secure and prevents hackers from hacking your precious Social media accounts. Of course there are ways around HTTPS as there are always ways to bypass security. But for now You'r accounts will be safe.