the most common implementation of this process is the HTTPS combination protocol.the encryption process is made possible through the use of digital certificates verified by a third party Certificate Authority.So that's SSL in a (very basic) nutshell. When we say a message was sent using HTTPS, what we are actually saying is that the message was first encrypted using SSL, transmitted and received using normal HTTP protocol, and then decrypted by the receiver, also with SSL. Calling HTTPS a "protocol" is not entirely accurate, as it is simply a combination of the HTTP and SSL protocols. The most common way that SSL is integrated into Internet communications is through the HTTPS protocol. Examples of well-respected CA's include Verisign and Digicert. Generally, the more widely the CA is known as a reputable organization, the more they will charge you per year to verify your site's identity. A Certificate Authority is a trusted company that agrees to vouch for the identity of a site, usually for a fee. To ensure that the certificate is a valid proof of identity, SSL contacts a trusted third party server specified in the certificate, called a Certificate Authority (CA). SSL provides this proof by requiring that one or more of the parties present a digital certificate into the initial negotiation of the connection, prior to the transmission of any encrypted data. In order for public key encryption to provide secure communication, one more more of the communicating parties must have some way of proving to the other that they are, in fact, who they claim to be. SSL's answer to the second question is also part of the answer to the first question. The encryption and decryption is accomplished through a method called "public key encryption."
Before transmitting any data, the sender encrypts its message, and the receiver must in turn decrypt the message before processing it. SSL's answer to the first question is encryption.
Technically, the term "SSL" now refers to the Transport Layer ouSecurity (TLS) protocol, which is based on the original SSL specification. Secure Socket Layer (SSL) is a protocol that provides security for communications between client and server by implementing encrypted data and certificate-based authentication. A Simple Step-By-Step Guide To Apache Tomcat SSL Configuration