An SSL Connection without https with aSSL
A new method of using aJax to establish an SSL connection allows pages or login information to be encrypted without switching over to https.
aSSL is a library distributed under MIT License thats implements a technology similar to SSL without HTTPS.
aSSL enables the client to negotiate a secret random 128-bit key with the server using the RSA algorithm. Once the connection has been established, the data will be sent and received using AES algorithm.
While switching to https has some definite advantages over this method, such as unspoofable browser notifications to let users know that it is a secure connection, aSSL can definitely come in handy for securing small amounts of data such as login information.
aSSL - aJax Secure Service LayerOriginally posted on Sun Jun 24, 2007