Transport Layer Security Protocol

Schannel supports versions 1.0, 1.1, and 1.2 of the Transport Layer Security (TLS) protocol. This protocol is an industry standard designed to protect the privacy of information communicated over the Internet. TLS assumes that a connection-oriented transport, typically TCP, is in use. The TLS protocol allows client/server applications to detect the following security risks:

  • Message tampering
  • Message interception
  • Message forgery

The full specification of the TLS Protocol is available from the IETF website:

Organization of TLS

The following steps are involved in using TLS for client/server communication:

Aa380516.wedge(en-us,VS.85).gif To use TLS for client/server communication

  1. Handshake and cipher suite negotiation
  2. Authentication of parties
  3. Key-related information exchange
  4. Application data exchange

The steps that make up TLS are divided into two protocols that, together, provide connection security:

Related topics

TLS Cipher Suites