Association for Computing Machinery
Originally deployed in web browsers, SSL (Secure Sockets Layer) has become the de facto standard for secure internet communications. The main purpose of SSL is to provide end-to-end security against an active, man-in-the-middle attacker. Even if the network is completely compromised - DNS is poisoned, access points and routers are controlled by the adversary, etc. SSL (Secure Sockets Layer) is the de facto standard for secure internet communications. Security of SSL connections against an active network attacker depends on correctly validating public-key certificates presented when the connection is established.