Friday, September 9, 2016

What is XMPP and How SSL TLS works

What is XMPP and How SSL TLS works



What is XMPP 

Guys, XMPP is largely used for the message servicing. Most of the top companies are using this for their messaging.

Extensible Messaging and Presence Protocol (XMPP) is a  communications protocol for message-oriented services based on  XML.

It is a protocol based on Extensible Markup Language (XML) and  intended for instant messaging (IM) and online presence detection.  It functions between or among servers, and facilitates  near-real-time operation. The protocol may eventually allow  Internet users to send instant messages to anyone else on the  Internet, regardless of differences in operating systems and  browsers.
XMPP is sometimes called the Jabber protocol, but this is a  technical misnomer. Jabber, an IM application similar to ICQ (I  Seek You) and others, is based on XMPP, but there are many  applications besides Jabber that are supported by XMPP.

Eventually, XMPP is expected to support IM applications with  authentication, access control, a high measure of privacy,  hop-by-hop encryption, end-to-end encryption, and compatibility  with other protocols.

IBM and Microsoft are working on a similar standard called SIP for  Instant Messaging and Presence Leveraging Extensions (SIMPLE)  based on Session Initiation Protocol (SIP).


How SSL &TLS works


Mostly asked question that why the S is displaying after HTTP..

A popular implementation of public-key encryption is the Secure Sockets Layer (SSL). Originally developed by Netscape, SSL is an Internet security protocol used by Internet browsers and Web servers to transmit sensitive information. SSL has become part of an overall security protocol known as Transport Layer Security(TLS).

 Look for the "s" after "http" in the address whenever you are about to enter sensitive information, such as a credit-card number, into a form on a Web site.


In your browser, you can tell when you are using a secure protocol, such as TLS, in a couple of different ways. You will notice that the "http" in the address line is replaced with "https," and you should see a small padlock in the status bar at the bottom of the browser window. When youre accessing sensitive information, such as an online bank account or a payment transfer service like PayPalor Google Checkout, chances are youll see this type of format change and know your information will most likely pass along securely.

TLS and its predecessor SSL make significant use of certificate authorities. Once your browser requests a secure page and adds the "s" onto "http," the browser sends out the public key and the certificate, checking three things: 1) that the certificate comes from a trusted party; 2) that the certificate is currently valid; and 3) that the certificate has a relationship with the site from which its coming.


 The padlock symbol lets you know that you are using encryption.
The browser then uses the public key to encrypt a randomly selected symmetric key. Public-key encryption takes a lot of computing, so most systems use a combination of public-key and symmetric key encryption. When two computers initiate a secure session, one computer creates a symmetric key and sends it to the other computer using public-key encryption. The two computers can then communicate using symmetric-key encryption. Once the session is finished, each computer discards the symmetric key used for that session. Any additional sessions require that a new symmetric key be created, and the process is repeated.




Available link for download

Posted by at
Labels: , , , , , , ,