Secure Hyper Text Transfer Protocol

Jump to: navigation, search

Secure Hypertext Transfer Protocol (S-HTTP) was developed by Eric Rescorla & Allan M. Schiffman for encrypting web communications from fraudulent activities on the web. It is an alternative to the HTTPS URI that was published in the year1999 as RFC 2660.

Mostly, web browsers uses Hypertext Transfer Protocol to carry out a communication process with web servers. Information flows between a browser and the server is not encrypted. For confidential information flow, transactions, access to online accounts, an encryption process is required to avert information breach. To address the same issue, and provide security for sensitive data and information, HTTPS and S-HTTP were both defined.

HTTPS is used as the standard mechanism for encrypting secured information, and is supported by the leading Microsoft and Netscape. Served pages are only encrypted by S-HTTP; therefore, it can be simultaneously used with HTTP on the same port. On the contrary, HTTPS wraps the complete communication process within SSL.


1. Secure Hypertext Transfer Protocol - Wikipedia, the free encyclopedia