Everyday Internet & Troubleshooting
What Is SSL/TLS?
SSL/TLS is the technology that turns an open, readable connection into a private, tamper-proof one. It's the padlock's engine.
SSL and TLS: the naming
SSL (Secure Sockets Layer) was the original protocol for encrypting internet connections. It was superseded by TLS (Transport Layer Security), which is more secure and is what's actually used today. People still say "SSL" out of habit, but modern connections use TLS. The older SSL versions are obsolete and insecure.
What it provides
TLS gives a connection three properties: encryption (outsiders can't read it), integrity (data can't be secretly changed), and authentication (you can verify who you're talking to). Together these turn a public channel into a private one.
The handshake, simplified
When your browser connects to a secure site, the two sides perform a TLS handshake:
- They agree on which encryption methods to use.
- The server presents a certificate proving its identity.
- Using public-key cryptography, they securely establish a shared secret key.
- From then on, they use that fast shared key to encrypt the actual data.
This clever combination lets total strangers create a private channel over an open network without having exchanged any secret beforehand.
Certificates and trust
A TLS certificate is issued by a Certificate Authority that vouches for a site's identity. Your browser trusts a built-in list of these authorities. If a site's certificate is missing, expired, or doesn't match, your browser warns you — a safeguard against impersonation.
Beyond the web
TLS secures far more than web browsing: email, messaging apps, VPNs, and countless apps rely on it. It's one of the most important pieces of infrastructure on the internet, quietly protecting nearly everything you do online — including the encrypted API calls a privacy-minded tool like IP Ducky makes to look up your details.