• Link to Rss this site
  • Link to LinkedIn
  • Link to Youtube
  • Link to X
  • Link to Instagram
  • English English English en
  • Deutsch Deutsch German de
Sales: +49 5251 304-800 | Support: +49 5251 304-636
NoSpamProxy
  • PRODUCT
    • NoSpamProxy Cloud
    • NoSpamProxy Protection
    • NoSpamProxy Encryption
    • NoSpamProxy Large Files
    • NoSpamProxy Disclaimer
  • SOLUTIONS
    • M365 Mail Security
    • Managed Certificates
    • 32Guards
    • AS4
  • RESOURCES
    • Documentation
    • Forum
    • Webcast Training
    • Training Courses
    • Support
    • Software Download
  • PARTNERS
    • Finding Resellers
    • Becoming Reseller
    • Partner Portal
    • NFR Licenses
  • COMPANY
    • Contact
    • Testimonials
    • Team
    • Career
    • Events
    • Awards
  • PRICES
  • BLOG
  • FREE TRIAL VERSION
    • Price Request
    • Free Trial Version
  • English
    • Deutsch
  • Click to open the search input field Click to open the search input field Search
  • Menu Menu
  • Was ist TLS-Verschlüsselung

What is TLS encryption?

Stefan Feist | Technischer Redakteur
Author: Stefan FeistTechnical Writerhttps://www.linkedin.com/in/stefan-feist-23b257b0/–Connect on LinkedIn

When data is transmitted via the Internet or other electronic channels, there is always a risk that this data will be intercepted or changed. Transport Layer Security (TLS) makes it possible to encrypt this data in transit and thus ensure its confidentiality and integrity. You can find out what TLS is and how you can use it very simply in our blog article.

28.11.2022|Last modified:29.11.2022

What is TLS encryption?

TLS stands for Transport Layer Security, which roughly translates to transport layer security. It is an encryption protocol that is mainly used with HTTPS. The term “transport layer” here means the corresponding layer in the TCP/IP model. The TCP protocol ultimately enables communication between two devices. In short, TLS ensures that content can be transmitted encrypted on the internet.

Thus, TLS is the basis for the encryption of communication between web applications and servers, for example web browsers (see above, HTTPS). It is important to mention that TLS is also crucial for the secure transmission of emails and other communication. For example, TLS is used to encrypt POP3 (as POP3S), IMAP (as IMAPS), SMTP (as SMTPS) and FTP (as FTPS), among others.

How does TLS encryption work?

With TLS, we speak of hybrid encryption, i.e. a mixture of asymmetric and symmetric encryption.

As soon as a client – let’s say a web browser – contacts the web server, this web server sends its certificate to the client. This certificate proves the authenticity of the server. The basic prerequisite is therefore that a TLS certificate is installed on the server.

This initiation of a TLS connection is called a TLS handshake. During the TLS handshake, client and server connect.

The client checks the certificate and sends the server a random number encrypted with the server’s public key. The server uses this random number to generate the session key with which the communication is to be encrypted. Since the random number comes from the client, the client can be sure that the session key actually comes from the server. The server then sends the encrypted session key to the client.

Why is hybrid encryption used with TLS? The answer: speed. If the data were also secured by means of asymmetric encryption, the entire communication would slow down considerably.

Why is transport encryption important?

The use of TLS has three goals:

  • Encryption

    Securing the transmission of data via communication networks.

  • Authentication

    Ensuring the identities of the parties transferring data.

  • Integrity

    Verifying that data has not been accessed or tampered with.

The importance of transport encryption through TLS can also be justified with the help of the requirements of the GDPR. For example, the State Commissioner for Data Protection and Freedom of Information in North Rhine-Westphalia points out that responsible parties who send email messages containing personal data must ensure mandatory transport encryption. However, it should also be mentioned that the use of TLS is only the minimum requirement and STARTTLS (see below) cannot replace email encryption using S/MIME or PGP.

What is the difference between SSL and TLS?

TLS is based on Secure Sockets Layer (SSL), which was developed by Netscape and introduced in 1995. TLS version 1.0 was released in 1999 and was planned as version 3.1 of SSL. However, it was then introduced as an improved version of SSL 3.0 and previously renamed TLS.

The difference between SSL 3.0 and TLS 1.0 is negligible. Version TLS 1.2 then brought significantly improved security as well as greater flexibility in terms of the encryption used (cipher suites).

The current TLS version is 1.3. Since the term SSL is still very common, it is often used synonymously with TLS, or a double designation such as SSL/TLS is used.

Setting up TLS encryption in NoSpamProxy

Setting up TLS encryption in NoSpamProxy is easy. All you have to do is store a valid TLS certificate on the Gateway Role and then select it in the SMTP receive connectors as well as in the outbound send connectors.

Setting up TLS in NoSpamProxy

STARTTLS is an additional command within the SMTP protocol. The connection establishment from the sending host to the receiving host is unencrypted. Thus, the initial EHLO command is sent, as is the response from the receiving server. In this response, the recipient signals that it supports STARTTLS and the sending server can decide for itself whether to accept the offer or not.

With SMTP, on the other hand, the connection is encrypted from the first moment. The reason for using STARTTLS is to avoid possible compatibility problems.

In the partner settings, you can also enforce transport security through TLS individually for each partner and even store the certificate that the partner must use for communication.

Partner settings for TLS

Not yet using email encryption?

Encrypting emails is secure with NoSpamProxy Encryption – and very easy! Ensure legally compliant and GDPR-compliant email communication now. Test NoSpamProxy now for 30 days free of charge.

More info Test NoSpamProxy now
  • share 
  • share 
  • share 
  • email 

SEARCH

PRODUCT

  • All Topics
  • NoSpamProxy Cloud
  • NoSpamProxy Protection
  • NoSpamProxy Encryption
  • NospamProxy Large Files

You need support?

You can find more information about NoSpamProxy in our documentation and forum.

CATEGORY

  • All Topics
  • News
  • Product
  • Tech & Support
  • Events
RSS Feed Logo RSS Feed Logo Subscribeto RSS Feed

NoSpamProxy

  • NoSpamProxy Cloud
  • NoSpamProxy Encryption
  • NoSpamProxy Large Files
  • NoSpamProxy Disclaimer
  • Price request
  • Team
  • Career
  • General terms and conditions
  • Data Protection Information for Business Partners and Applicants
  • Cybersecurity (PSIRT)

Partners

  • Becoming a reseller
  • Partners
  • Order Certificates
  • Newsletter

Categories

  • All topics
  • News
  • Support
  • Updates
  • Order certificates

Latest News

  • Was ist ein Zero Day Exploit Preview
    What is a Zero-Day Exploit?23.04.2025 - 14:00
  • Info Icon
    UPDATE: New Google email sender guidelines: What you need to do17.04.2025 - 12:00
  • Was ist Spoofing Preview
    What is spoofing?11.04.2025 - 14:00
IMPRINT • EULA • Privacy Policy • • © 2025 Net at Work GmbH
  • Link to Rss this site
  • Link to LinkedIn
  • Link to Youtube
  • Link to X
  • Link to Instagram
Link to: Adjustment of the interface to the SwissSign trust centre Link to: Adjustment of the interface to the SwissSign trust centre Adjustment of the interface to the SwissSign trust centreInfo Icon Link to: BGH ruling confirms: Do not use quarantine folders Link to: BGH ruling confirms: Do not use quarantine folders BGH-Urteil lieber keine Quarantaene Ordner PreviewBGH ruling confirms: Do not use quarantine folders
Scroll to top Scroll to top Scroll to top