HTTPS (HTTP Secure) uses TLS (Transport Layer Security) to encrypt web traffic. It provides: confidentiality (data is encrypted), integrity (data cannot be modified), and authentication (server identity is verified via certificates). How it works: TLS handshake establishes encrypted connection using asymmetric cryptography, then symmetric encryption handles data transfer. Certificates are issued by Certificate Authorities (CAs) - Let's Encrypt provides free certificates. Modern best practices: use TLS 1.3, enable HSTS (force HTTPS), use strong cipher suites. HTTPS is now required for many browser features and is a ranking signal for search engines. Essential for any production website.
🔒 Security beginner
HTTPS/TLS
Secure communication protocol that encrypts data between browsers and servers using TLS certificates.
4
views
</> Related Terms
OAuth 2.0
Authorization framework enabling third-party applications to access user resources without sharing credentials.
SSH (Secure Shell)
Cryptographic network protocol for secure remote login, command execution, and file transfer.
JWT (JSON Web Token)
Compact, URL-safe token format for securely transmitting information between parties as a JSON object.
Nginx
High-performance web server and reverse proxy known for its stability, speed, and low resource usage.