RE: [CISSP-D] SSL/TLS - Where in the OSI model?

I'm sure when I did my CCNA TLS was a Transport Layer protocol (L4) - as TLS
supercedes SSLv3 it'll do me.

After further googling I'm going to stick with Layer 4;

http://expertanswercenter.techtarget.com/eac/knowledgebaseAnswer/0,295199,si
d63_gci976426,00.html

Sums it up as follows;

"That's an excellent question and one I would love to really talk about in
depth but I'll see if I can cut it short and sweet so I don't end up boring
you to death. SSL is a point-point encryption protocol. Under normal
circumstances it (SSL v2) is used to encrypt data between a Web server and
an end-user, however SSL is an abnormality in itself. If we look at where
SSL sits within the OSI layer we find that it actually sits somewhere
between Layer 3 (the network layer) and Layer 4 (the transport layer)
however it's implemented by Layer 7 (the application layer). As such, what
you're seeing is your Web browser (which sits at Layer 7) actually invoking
a Layer 3/4 protocol to communicate (which is extremely unusual.)"





------------------------ Yahoo! Groups Sponsor --------------------~--> 
$9.95 domain names from Yahoo!. Register anything.
http://us.click.yahoo.com/J8kdrA/y20IAA/yQLSAA/kgFolB/TM
--------------------------------------------------------------------~-> 

 
Yahoo! Groups Links

<*> To visit your group on the web, go to:
    http://groups.yahoo.com/group/CISSP-Discuss/

<*> To unsubscribe from this group, send an email to:
    CISSP-Discuss-unsubscribe@yahoogroups.com

<*> Your use of Yahoo! Groups is subject to:
    http://docs.yahoo.com/info/terms/