Friday, February 11, 2011

SSL vs. SSH

Secure Shell or SSH is a network protocol that allows data to be exchanged using a secure channel between two networked devices. SSH Used primarily on Linux and Unix based systems to access shell accounts, SSH was designed as a replacement for Telnet and other insecure remote shells, which send information, notably passwords, in plaintext, rendering them susceptible to packet analysis.The encryption used by SSH is intended to provide confidentiality and integrity of data over an unsecured network, such as the Internet.

Secure Sockets Layer (SSL), are cryptographic protocols that provide communications security over the Internet.

HTTPS = HTTP + SSL
The main idea of HTTPS is to create a secure channel over an insecure network.
HTTP URLs use port 80 by default, HTTPS URLs use port 443 by default.

The differences between SSH and SSL are:
1. SSH uses port 22 while SSL uses port 443.

2. SSL is used predominantly for securely transmitting critical information like in credit cards and banking. On the other hand, SSH is for securely executing commands across the internet.

3. SSH uses a username/password authentication system to establish a secure connection while SSL does not really bother with it.

4. SSH is more about network tunneling while SSL is more about certificates.