What is SSL/TLS (Secure Sockets Layer / Transport Layer Security)?
Turkish: SSL/TLS
SSL/TLS is the protocol family that provides identity checks, key agreement, and encrypted data transfer between clients and servers.
What is SSL/TLS?
SSL/TLS is the protocol family used to encrypt traffic between a browser and server, an application and API, or two backend services. SSL is the older name; modern secure connections use TLS 1.2 or TLS 1.3.
At the start of a connection, both sides negotiate the TLS version and cipher suites they support. The server sends its certificate, and the client verifies that it is trusted and matches the requested domain. The sides then establish a session key, and the rest of the data is protected with symmetric encryption.
Where It Is Used
HTTPS is the best-known use of SSL/TLS on the web. The same foundation protects database connections, email protocols, service-to-service API calls, and admin panels. Platforms such as Cloudflare can help with TLS termination, certificate management, and disabling obsolete protocols.
A secure setup turns off old SSL versions, avoids weak ciphers, considers browser policies such as HSTS, and automates certificate renewal. TLS protects data in transit; application authorization, session security, and data access rules still need to be designed separately.
Related Terms
Cloudflare is a global internet platform providing DNS, CDN, security, performance, and edge compute services from one network.
Encryption at RestEncryption at rest protects data stored on disks, databases, or backups with keys, reducing exposure from unauthorized access.
HTTPS (HTTP Secure)HTTPS encrypts HTTP traffic with TLS, providing confidentiality, integrity, and server identity between user, browser, and server.
Man-in-the-Middle AttackA MITM attack intercepts traffic between two parties so an attacker can read, alter, or redirect communication without consent.
Mutual TLS (mTLS)Mutual TLS verifies both client and server certificates during a TLS connection, reducing trust in network location alone.
EncryptionEncryption turns readable data into a cryptographic form that only authorized parties can decrypt using the right key and algorithm.
SSL PinningSSL pinning makes a mobile app trust only an expected certificate or public key, reducing man-in-the-middle risk.
SSL CertificateAn SSL certificate proves a site's domain identity and binds encryption keys to a trusted chain for HTTPS connections.
VPN (Virtual Private Network)A VPN creates an encrypted tunnel between a device and a target network, protecting traffic and enabling private access.