I am a student currently learning networking concepts.
So from what I know and understand, HTTPS is used to encrypt traffic at application layer so if somebody intercepts it, that person will not be able to read it. IPSec is used to encrypt either a payload/data portion of IP packet (transport mode) or both header and data portions (tunnel mode).
here is my question: if we already encrypt data at application layer with HTTPS, why do we need to encrypt it again at the network layer with IPSec? correct me if I am wrong or maybe I do not properly understand concepts of HTTPS and IPSec.
No comments:
Post a Comment