https stands for Hypertext Transfer Protocol Secure. It is actually a combination of Hypertext Transfer Protocol and the SSL/TLS protocol. The prime objective of https is to provide encryption. Another function of https is to secure identification of the server.
These type of connections are generally used on the World Wide Web particularly for payment transactions and for other sensitive transactions where security may be a prime concern and requirement. Corporate Information Systems employ the use of https frequently.
The concept behind https is to ensure the creation of a secure channel over an insecure network. https helps in extending reasonable protection from man in the middle attacks and also attacks from the eavesdroppers.
Major certificate authorities endorse the functioning of https. Certain criteria are to be ensured in order to extend trust to an https connection. The user should trust the certificate authority only when the https connection has been associated with legitimate websites without any misleading names. Availability of a valid certificate is a must which should be duly signed by the trusted authority. It is also required that the certificate must correctly identify the website. Primarily, with the help of the https connection, a user can ensure that protocol’s encryption layer that is TLS or SSL are actually unbreakable by an eavesdropper.
