HTTP (Hypertext Transfer Protocol) is a protocol used to transfer hypertext from web servers to local browsers. It is a communication protocol based on TCP/IP used to transfer data such as HTML files, image files, query results, etc.
HTTP works on a client-server architecture. The browser acts as an HTTP client and sends all requests to the HTTP server or web server. Web servers include Apache servers, IIS servers (Internet Information Services), etc.
After receiving the request, the web server sends the response information to the client.
The default port number for HTTP is 80, but it can also be changed to 8080 or other ports.
Three Notes on HTTP:
HTTPS is a secure HTTP channel, which is the secure version of HTTP. HTTPS adds an SSL layer to HTTP. The security foundation of HTTPS is SSL, so the detailed content of encryption requires SSL.
The main functions of the HTTPS protocol can be divided into two types: one is to establish an information security channel to ensure the security of data transmission, and the other is to confirm the authenticity of the website.
HTTPS can encrypt information to prevent sensitive information from being obtained by third parties, so many services with high-security levels, such as bank websites or email, use the HTTPS protocol.
When the client communicates with the web server using HTTPS, the following steps occur:
The data transmitted by the HTTP protocol is unencrypted, which means it is in plaintext. Therefore, using the HTTP protocol to transmit private information is very insecure. To ensure the encrypted transmission of this private data, Netscape designed the SSL (Secure Sockets Layer) protocol to encrypt the data transmitted by the HTTP protocol, thus giving birth to HTTPS. In simple terms, the HTTPS protocol is a network protocol constructed from SSL + HTTP, which can perform encrypted transmission and identity authentication and is more secure than the HTTP protocol.
The main differences are as follows:
SSL certificates, also known as digital certificates, are provided by Tencent Cloud in collaboration with well-known industry digital certificate authorities (CA, Certificate Authority). Tencent Cloud platform offers a one-stop management service for applying, managing, and cloud deploying both free and paid SSL certificates. SSL certificates provide a complete HTTPS solution for your website, mobile apps, web APIs, and other applications, including identity verification and encrypted data transmission.
SSL certificates primarily serve HTTPS. After deploying the certificate, the website link changes from starting with HTTP to HTTPS.
They are mainly used for sending secure emails, accessing secure sites, online bidding and tendering, online contracting, online ordering, online office work, online payments, online tax payments, and other secure online electronic transactions.
The content of SSL certificates implements two basic functions:
Our usual internet access and browsing are based on the standard TCP/IP protocol, with content transmitted in the form of data packets across the network.
Since the content of the data packets is not encrypted, anyone who intercepts them can obtain the contents. Therefore, if the data packets transmit usernames, passwords, or other personal privacy information, it is easy for others to steal them.
SSL can establish an encrypted channel between the client (e.g., browser) and the server used by the user. First, all data transmitted over the network will be encrypted and then decrypted after reaching the destination. This way, even if the data packet is intercepted during transmission, it is difficult to crack its content.
Currently, phishing websites have become a serious threat to internet usage. Attackers can create an interface identical to a real website and use similar domain names to direct users to visit.
If users are not careful, they can easily be deceived. Once users enter their account numbers, passwords, and other information on a phishing website, this information will be recorded and stolen, threatening the security of their accounts.
SSL server certificates can effectively prove the true information of the website and the legality of the domain name used, allowing users to easily identify real and fake websites.
SSL certificates go through strict review procedures to confirm the identity of the applicant during the application process. Users can see the content of the certificate when visiting the website, which includes the real domain name of the website, the owner of the website, the certificate issuing organization, and other information. Browsers also display corresponding security indicators, allowing visitors to use the site with confidence.
Note: Up to one ECC, one RSA, and one national secret SM2 encryption algorithm certificate can be deployed to the same domain.
Tencent EdgeOne supports the following types of certificates: