RunSeek.com - Use RunSeek to power search the Internet.
Analysis of the SSL 3.0 Protocol - This note gives a detailed technical analysis of the cryptographic strength of the SSL 3.0 protocol. A number of minor flaws in the protocol and several new active attacks on SSL are presented. [Acrobat] (D. Wagner and B. Schneier)
Apache+SSL Win32 HOWTO - Setting up Apache with mod_ssl on Windows NT and 98 to provide secure HTTP services.
Apache-SSL - An implementation of Apache with SSL capabilities. It is based on SSLeay/OpenSSL. It is not subject to US export control. [Free / Open Source]
C/SSL - A cryptographic toolkit for developing SSL 3.0 and TLS 1.0-secured Internet and Intranet applications. It is not subject to US export control. [Commercial] (Baltimore)
Covalent Technologies, Inc. - Offers Raven SSL, which adds SSL support to Apache web server. Not exportable from North America.
How SSL Works - The article explains how Secure Sockets Layer (SSL) employs public key cryptography techniques for Internet security. (Netscape)
Introducing SSL and Certificates using SSLeay - Reviews cryptographic techniques and certificates. Describes SSL and packages for implementing SSL. Show examples of how to use SSLeay, the free implementation of SSL. (Frederick Hirsch)
Introduction to SSL - An introduction to the SSL protocol and the handshake process. (Netscape)
J/SSL - SSL is a secure communications toolkit written entirely in Java and built using J/CRYPTO. J/SSL is a full implementation of SSL 3.0. J/SSL is not subject to US export restrictions and therefore provides full 128-bit encryption. [Commercial] (Baltimore)
Merchantbankcard.com Secure Online Credit Card Processing - Transforms existing web sites with no credit card transaction capabilities into e-commerce enabled web sites.
mod_ssl: The Apache Interface to OpenSSL - The module provides strong cryptography for the Apache 1.3 webserver via SSL and TLS protocols, it was developed using OpenSSL, which is based on SSLeay. [Free / Open Source] (Ralf Engelschall, Ben Laurie)
Netscape Certificate Specifications - The documents referenced below describe the certificate issuing, key generation, and certificates extensions supported in various Netscape products. (Netscape)
Network Security Services libraries - NSS implements SSL v2 and v3, TLS, PKCS#5, PKCS#7, PKCS#11, PKCS#12, S/MIME, X.509v3 certificates, and other security standards. These libraries are in use in Mozilla / Netscape Communicator and server products. NSS is an open source project.
OpenSSL - A toolkit implementing SSL v2/v3 and TLS protocols with full-strength cryptography world-wide. It is based on SSLeay, developed by Eric Young and Tim Hudson. [Free / Open Source] (The OpenSSL Project)
OpenSSL PKCS#12 Program FAQ - An utility to generate PKCS#12 certificates with OpenSSL/SSLeay. (Stephen Henson)
RFC 2246 - The TLS Protocol Version 1.0 - This document specifies Version 1.0 of the Transport Layer Security (TLS) protocol.
RSA BSAFE SSL-C - It includes everything needed for delivering SSL-enabled applications developed in C, or C++. It is not subject to US export control. [Commercial] (RSA Data Security)
RSA BSAFE SSL-J - It includes everything needed for delivering SSL-enabled Java applications. It is subject to US export control. [Commercial] (RSA Data Security)
Secure Sockets Layer/Transport Layer Security - A brief overview of SSL/TLS and information on their support in Microsoft products. (Microsoft)
Server Gated Cryptography - Server Gated Cryptography (SGC) overview, FAQ, technical information and related links. (Microsoft)
SSL Accelerators - Links to SSL acceleration hardware and related information.
SSL encryption check - Access this frameset to test if your browser supports TLS/SSL, and for a report of which cipher and key length is used.
SSL-Talk FAQ - Secure Sockets Layer Discussion List FAQ
SSLava - A SSL for Java toolkit for creating secure SSL-compliant applets and applications. It is subject to US export control. [Commercial] (Phaos Technology)
SSLeay and SSLapps FAQ - FAQ on SSLeay, a C library with SSL and CA implementation. It is not limited by the US export restrictions. [Free / Open Source] (Eric Young & Tim Hudson)
SSLeay Certificate Cookbook - Describes how to set up SSLeay to use it as a certificate authority, and how to create and install server and client certificates. (Frederick Hirsch)
SSLeay Implementation for Java - NET.DLL replacement that enables any Java program to communicate using the Secure Sockets Layer (SSL). It requires a RMI compliant JVM. [Free / Open Source] (Scott Jewell)
SSLWrap - An inetd service (for Unix operating systems) that sits over POP3, IMAP, SMTP, etc. and encrypts data using SSL.
Stunnel - A universal SSL tunnel. It is designed to work as SSL encryption wrapper between remote client and local (inetd-startable) or remote server. [Free / Open Source]
Stunnel FAQ - Frequently Asked Questions - Where to get the software, how to install and run it, and troubleshooting tips.
Technical Details on Server Gated Cryptography - Describes the difference between the SGC protocol and SSL/TLS. Also covers the implementation of SGC in Netscape products. (Microsoft)
The SSL Protocol Version 3.0 - The SSL protocol specification. (Netscape)
Transport Layer Security Charter - The IETF Working Group is responsible for developing the TLS Protocol which is intended to replace SSL.