S-HTTP

S-HTTP
SHTTP im TCP/IP‑Protokollstapel:
Anwendung SHTTP
Transport TCP
Internet IP (IPv4, IPv6)
Netzzugang Ethernet Token
Bus
Token
Ring
FDDI

S-HTTP oder auch SHTTP steht für Secure Hypertext Transfer Protocol, ein Protokoll der Internetprotokollfamilie, das 1995 von Enterprise Integration Technologies entwickelt wurde. Es definiert eine verschlüsselte Datenübertragung über das Hypertext Transfer Protocol (HTTP), also den Datenaustausch zwischen Webserver und Webbrowser im World Wide Web.

Nicht alle Webbrowser unterstützen S-HTTP. Das Protokoll wird mit dem Status „Experimental“ von der IETF als RFC 2660 geführt.

Heute wird stattdessen meist Hypertext Transfer Protocol Secure (HTTPS) verwendet, das die Daten über einen sicheren SSL/TLS-Tunnel zwischen Server und Client überträgt. S-HTTP dagegen verschlüsselt jede einzelne Anfrage, kapselt also die Nutzdaten; die Header dagegen nicht.

Weblinks

  • RFC 2660The Secure HyperText Transfer Protocol, August 1999

Wikimedia Foundation.

Игры ⚽ Поможем сделать НИР

Schlagen Sie auch in anderen Wörterbüchern nach:

  • HTTP cookie — HTTP Persistence · Compression · HTTPS Request methods OPTIONS · GET · HEAD · POST · PUT · DELETE · TRACE · CONNECT Header fields Cookie · ETag · Location · Referer DNT · …   Wikipedia

  • HTTP tunnel — HTTP Tunneling is a technique by which communications performed using various network protocols are encapsulated using the HTTP protocol, the network protocols in question usually belonging to the TCP/IP family of protocols. The HTTP protocol… …   Wikipedia

  • HTTP pipelining — is a technique in which multiple HTTP requests are written out to a single socket without waiting for the corresponding responses. Pipelining is only supported in HTTP/1.1, not in 1.0.The pipelining of requests results in a dramatic improvement… …   Wikipedia

  • HTTP-Tunnel Client — is a program created by HTTP Tunnel Corporation that masks application data as HTTP traffic to bypass firewalls. This is done by routing all outgoing traffic through port 80, the standard HTTP traffic port, and encapsulating this inside HTTP… …   Wikipedia

  • HTTP compression — is a capability built into both web servers and web browsers, to make better use of available bandwidth. HTTP protocol data is compressed before it is sent from the server: compliant browsers will announce what methods are supported to the server …   Wikipedia

  • HTTP header injection — is a general class of web application security vulnerability which occurs when Hypertext Transfer Protocol (HTTP) headers are dynamically generated based on user input. Header injection in HTTP responses can allow for HTTP response splitting and… …   Wikipedia

  • HTTP persistent connection — HTTP persistent connections, also called HTTP keep alive, or HTTP connection reuse, is the idea of using the same TCP connection to send and receive multiple HTTP requests/responses, as opposed to opening a new connection for every single… …   Wikipedia

  • HTTP response splitting — is a form of web application vulnerability, resulting from the failure of the application or its environment to properly sanitize input values. It can be used to perform cross site scripting attacks, cross user defacement, Web cache poisoning,… …   Wikipedia

  • HTTP Test Tool — (htt) is an open source scriptable protocol test tool for HTTP protocol based products like web servers, web browsers, web applications or ICAP.Software products are per se not error free. Add new features, fix errors and upgrade library versions …   Wikipedia

  • HTTP(P2P) — is a protocol based on HTTP created to generate interest in developing peer based solutions to overloaded web traffic. External links * [http://ieeexplore.ieee.org/xpl/abs free.jsp?arNumber=1336564 IEEE xplore] …   Wikipedia

  • HTTP 404 — For broken links in Wikipedia, see Wikipedia:Link rot HTTP Persistence · Compression · HTTPS Request methods OPTIONS · GET …   Wikipedia

Share the article and excerpts

Direct link
Do a right-click on the link above
and select “Copy Link”