What are HTTP and HTTPS?
HTTP is an internet protocol communications between a browser and a server to send content in clear text.
HTTPS is a combination of SSL / TLS encryption protocol based on HTTP, a client certificate to authenticate the server relies on the communication protocol transmitted encrypted information.
1991 HTTP / 0.9 only supports GET requests, does not support the request header
In 1996 HTTP / 1.0 Default Short connection (recommended once a TCP connection request, the request to finish off), supports GET, POST, the HEAD request
In 1999 HTTP / 1.1 the default long connection (a TCP connection can be multiple requests); support PUT, DELETE, PATCH request of six
Increase host, supports virtual hosts; support for HTTP functionality
2015 HTTP / 2.0 multiplexing (a TCP connection can handle multiple requests); server push (push all resources request)
HTTP / 1.X parse text based on a binary basis, HTTP / 2.0 parsing; header compression, the transmission efficiency provided
HTTPS request procedure :( HTTPS requests to a HTTP transport twice)
1. The client sends https request, the server requests an SSL connection;
2. The server receives https requests, or request a digital certificate made, to obtain a total and server private key, and sends the public key to the client;
3. The client public key authentication, the warning is not verified, verification is generated by a random number, the client is a private key;
4. The client public key and a private key for the client to the service terminal a symmetric encryption;
5. After the server receives the encrypted content, decrypted by the asymmetric private key of the server, the client to obtain the private key;
6. The server and client private key content symmetric encryption, and the encrypted content sent to the client;
7. After the client receives the encrypted content, symmetric private key is decrypted by the client to obtain the content.
HTTPS how check validity of the certificate?
1. Public Key Lock
2. Certificate Lock