SSL (Secure Sockets Layer) and SET (Secure Electronic Transaction) are both cryptographic protocols that aim to enhance security in different aspects of online transactions. However, they serve different purposes and operate at different levels within the transaction process. Here’s a comparison of SSL and SET:
- Purpose:
- SSL: SSL is primarily focused on securing the communication between a client (web browser) and a server. It ensures the confidentiality, integrity, and authenticity of data transmitted over the internet, such as web pages, forms, and other sensitive information.
- SET: SET is specifically designed for securing online payment transactions. It focuses on providing security measures to protect sensitive payment data during the payment process, including encryption, authentication, and non-repudiation.
- Scope of Application:
- SSL: SSL is a widely adopted protocol used across various internet services, such as websites, email clients, and other applications that require secure communication.
- SET: SET is a specialized protocol mainly used in the context of online payment transactions. It provides security mechanisms specific to the payment process, including the involvement of payment gateways, digital certificates, and trusted third parties.
- Encryption and Authentication:
- SSL: SSL employs encryption algorithms to encrypt the data transmitted between the client and the server, ensuring its confidentiality. It also provides authentication through digital certificates to verify the identity of the server and, optionally, the client.
- SET: Like SSL, SET incorporates encryption to protect payment data during transmission. Additionally, SET utilizes digital signatures to provide non-repudiation, ensuring that the parties involved cannot deny their involvement in the transaction.
- Adoption and Usage:
- SSL: SSL has been widely adopted and is considered a standard security protocol for securing web communication. It is commonly used for securing websites (HTTPS) and other internet-based services.
- SET: Despite its initial efforts and industry support, SET has not achieved widespread adoption. The complexity, implementation costs, and compatibility issues limited its usage, and it has been largely replaced by other payment security standards.
In summary, SSL focuses on securing the communication between clients and servers in various internet applications, whereas SET specifically targets securing online payment transactions. SSL is widely used and accepted, while SET faced challenges in terms of adoption and has been largely replaced by other payment security standards.
Secure Socket Layer protocol has been the industry standard for securing Internet communications. Secure Electronic Transactions protocol is a complex and more secure protocol than SSL.
Origins of Protocols
SSL protocol was developed by Netscape for the purpose of securing online transactions. SET protocol was jointly developed by MasterCard and Visa with the goal of securing Web browsers for bankcard transaction.
How SSL Works
SSL protocol secures data transmissions with a combination of public-key and symmetric-key encryption. SSL protocol always begins with a handshake that allows the server to authenticate itself to the client. If the server cannot be authenticated, the connection cannot be established.
How SET Works
SET uses dual signatures to secure a transaction. SET requires the purchase of software to use for an e-commerce site. The design of SET protocol requires the installation of an e-wallet on the client.
