http protocol:
- servers and clients as a form of data exchange
Common request header:
- User-Agent: the identity of the carrier's request identifier
- Connection: After completion of the disconnection request or connection maintained (close keep-alive)
Common response headers:
- Content-Type: client to obtain the server response data type
https protocol:
- secure http protocol
Encryption:
- Symmetric key encryption: encryption develop client, encrypted data == "to the ciphertext decryption key == +" service receives the ciphertext decryption key == + "decryption
Drawbacks: during transmission key is intercepted ciphertext +
- asymmetric key cryptography: encryption developing server (public key) == "to the client encryption ==" client encrypted data by encryption == "to the ciphertext ==" server decryption (private key )
Shortcomings: low efficiency (communication speed impact)
The public key is tampered with
- Certificate key cryptography (encryption to https)
Authentication certificate authority public key (digital signature) == ".. . . . .