TLS for Applications

To make the Internet more secure, Transport Layer Security (TLS), the successor to Secure Sockets Layer (SSL), needs to be widely deployed by all kinds of applications across the Internet.

People are generally familiar with TLS from the “https” and lock icons seen in web browsers, but TLS can be used in so many other applications.

TLS is particularly critical now that the Internet Architecture Board (IAB) has stated the goal of making encryption the default across the Internet.

This page outlines some basic steps you can take to get started.

1. Understand the basics of TLS. To get started, you may want to view our “TLS Basics” page.

2. Choose the right TLS library for your application:

• Overview of Popular TLS Libraries
• OpenSSL
• LibreSSL
• GnuTLS

3. Learn about TLS support for specific protocols:

• STARTTLS Everywhere for SMTP
• The DANE Protocol – DNS-Based Authentication of Named Entities

4. Understand why TLS is necessary:

• RFC 7258, Pervasive Monitoring is an Attack

5. Understand common attacks against encrypted communications:

• What can App developers learn from Heartbleed
• Heartbleed, LibreSSL and the Importance of Implementation Diversity

6. See how others are securing their applications using TLS:

• Google uses TLS for all Gmail Connections

7. Build the business case for your use of TLS (documents needed)

8. Keep up-to-date on the latest TLS news and activities:

• Data on wordwide adoption of TLS 1.3. (our Pulse platform)
• Join the IETF’s UTA Working Group