SSL and STS differences

Question & Answer

Question

What is the difference between SSL vs STS?

Cause

Answer

The differences between STS and SSL are described in the Connect:Direct Secure+ Option for UNIX Implementation Guide. This guide can be downloaded from this Web site:
ftp://public.dhe.ibm.com/software/commerce/doc/mft/cdunix/38/secureplusimplementationguide_38.pdf

The Guide describes each method in depth.

Download and read the Implementation Guide for full details.

Here is a brief description of each:

The STS or Station-to-Station Protocol is a three-pass variation of the basic Diffie-Hellman protocol. It enables you to establish a shared secret key between two nodes with mutual entity authentication. Nodes are authenticated using digital signatures that sign and verify messages.

SSL or Secure Sockets Layer Protocol uses certificates to exchange a session key between the node that initiates the data transfer (the primary node or pnode) and the node that received the data (the secondary or snode). A certificate is an electronic document that associates a public key with an individual or other entity. It enables you to verify the claim that a given public key belongs to a given entity. A certificate authority (CA) validates an applicant's identity, creates a certificate, and then signs the certificate, thus vouching for an entity's identity. SSL provides three levels of security.

[{"Product":{"code":"SSFVK3","label":"IBM Sterling Connect:Enterprise for UNIX"},"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Component":"Not Applicable","Platform":[{"code":"PF002","label":"AIX"},{"code":"PF010","label":"HP-UX"},{"code":"PF016","label":"Linux"},{"code":"PF027","label":"Solaris"}],"Version":"2.5;2.4","Edition":"","Line of Business":{"code":"LOB59","label":"Sustainability Software"}}]

Historical Number

PRI6603;SCI50708

Was this topic helpful?

Document Information

Modified date:
17 December 2019

UID

swg21540788

Tips