+ 4
Do anyone please explain core mechanism of https how it works?
is it work like encapsulation?
7 Answers
+ 5
Thomas Williams i want to know how https secure our private data from being attacked what's the core machanism behind it. use to secure our private data...
+ 4
Https in a website's URL indicates that it has been *verified* to be secure by a specialised group of people
It is meant to show that a website is safe and will not immediately begin to load virusses onto your computer (at least not directly)
It costs money to get your site verified
Encapsulation is a *completely* different concept, the security of variables. With encapsulation, you control what parts of the program can access other parts, and making sure only certain parties can access/change variables
+ 4
It means the website has a valid certificate. If a website has a valid certificate, it means that a certificate authority has taken steps to verify that the web address actually belongs to that organization. When you type a URL or follow a link to a secure website, your browser will check the certificate for the following characteristics: read below for more info!
https://www.us-cert.gov/ncas/tips/ST05-010
+ 3
Not exactly like encapsulation but yeah.... . HTTP is there to monitor or help in transporting some important types of data forms eg:- audio,video,database sheets,PDF,etc... Now normal sites having HTTP as URL will allow these files to get transported without getting encrypted....means any middle man who can tap in Ur communication can now get these data easily.....But In sites having HTTPS as a part of URL means Ur files are encrypted and then get transferred.. this may make the data more tough to get leaked or stolen by middlemen ...... In layman's language HTTPS offers encryption of data but HTTP doesn't ...
+ 2
Thomas Williams i want to know inner function of https how it works ?
+ 2
Prince Raj You want to know how the *internet* works?
+ 2
HTTP operates at the highest layer of the TCP/IP model, the Application layer; as does the TLS security protocol (operating as a lower sublayer of the same layer), which encrypts an HTTP message prior to transmission and decrypts a message upon arrival. Strictly speaking, HTTPS is not a separate protocol, but refers to use of ordinary HTTP over an encrypted SSL/TLS connection.
HTTPS encrypts all message contents, including the HTTP headers and the request/response data. With the exception of the possible CCA cryptographic attack described in the limitations section below, an attacker should only be able to discover that a connection is taking place between the two parties and their domain names and IP addresses.
no it's not work like encapsulation it may hide our private data from being attack for that only we cant call it's work like encapsulation.