TLS extensions
E893548
TLS extensions are optional protocol additions that enhance and customize Transport Layer Security (TLS) handshakes with extra capabilities such as server name indication, session tickets, and application-specific parameters.
All labels observed (1)
| Label | Occurrences |
|---|---|
| TLS extensions canonical | 1 |
How this entity was disambiguated
This entity first appeared as the object of triple T10926990 — resolving that mention is where its identity was fixed. The disambiguator weighed these candidate entities and picked the highlighted one (or “None”, minting a new entity). This is how homonymy is resolved: the same surface form can point to different entities.
Target entity: TLS extensions Context triple: [RFC 6066, defines, TLS extensions]
-
A.
TLS
TLS (Transport Layer Security) is a cryptographic protocol that secures data transmitted over networks by providing encryption, authentication, and integrity between communicating applications.
-
B.
TLS
TLS is the IATA airport code for Toulouse-Blagnac Airport, the main international airport serving Toulouse in southwestern France.
-
C.
TLS
TLS is the ISO 3166-1 alpha-3 country code for Timor-Leste (East Timor), a Southeast Asian nation on the eastern half of Timor Island.
-
D.
Server Name Indication extension
The Server Name Indication (SNI) extension is a TLS protocol feature that allows a client to indicate the hostname it is trying to connect to at the start of the handshake so that the server can present the correct certificate for virtual hosting.
-
E.
TLS heartbeat extension (later deprecated)
The TLS heartbeat extension was a Transport Layer Security protocol feature designed to keep secure connections alive and test reachability, later becoming widely known for the critical Heartbleed vulnerability that led to its deprecation.
- F. None of above. chosen
- G. Unsure - the case is ambiguous/there is not enough information to decide.
Target entity: TLS extensions Target entity description: TLS extensions are optional protocol additions that enhance and customize Transport Layer Security (TLS) handshakes with extra capabilities such as server name indication, session tickets, and application-specific parameters.
-
A.
TLS
TLS is the ISO 3166-1 alpha-3 country code for Timor-Leste (East Timor), a Southeast Asian nation on the eastern half of Timor Island.
-
B.
TLS
TLS (Transport Layer Security) is a cryptographic protocol that secures data transmitted over networks by providing encryption, authentication, and integrity between communicating applications.
-
C.
TLS
TLS is the IATA airport code for Toulouse-Blagnac Airport, the main international airport serving Toulouse in southwestern France.
-
D.
Server Name Indication extension
The Server Name Indication (SNI) extension is a TLS protocol feature that allows a client to indicate the hostname it is trying to connect to at the start of the handshake so that the server can present the correct certificate for virtual hosting.
-
E.
TLS heartbeat extension (later deprecated)
The TLS heartbeat extension was a Transport Layer Security protocol feature designed to keep secure connections alive and test reachability, later becoming widely known for the critical Heartbleed vulnerability that led to its deprecation.
- F. None of above. chosen
Statements (55)
| Predicate | Object |
|---|---|
| instanceOf |
TLS protocol mechanism
ⓘ
network security mechanism ⓘ |
| definedIn |
RFC 6066
NERFINISHED
ⓘ
RFC 8446 NERFINISHED ⓘ TLS 1.2 specification NERFINISHED ⓘ TLS 1.3 specification ⓘ |
| enablesFeature |
forward compatibility with new TLS versions
ⓘ
online certificate status via OCSP stapling ⓘ protocol negotiation via ALPN ⓘ resumption via session tickets ⓘ virtual hosting via SNI ⓘ |
| hasProperty |
backward compatible
ⓘ
optional ⓘ |
| hasPurpose |
extend TLS functionality
ⓘ
negotiate additional capabilities ⓘ support application-specific parameters ⓘ |
| introducedInVersion | TLS 1.0 NERFINISHED ⓘ |
| operatesAtLayer | transport layer ⓘ |
| partOf | Transport Layer Security NERFINISHED ⓘ |
| relatedTo |
TLS key exchange
ⓘ
X.509 certificates NERFINISHED ⓘ cipher suite negotiation ⓘ |
| securityConsideration |
improper handling can cause downgrade attacks
ⓘ
some extensions have been deprecated for security reasons ⓘ |
| standardizedBy |
Internet Engineering Task Force
ⓘ
surface form:
IETF
|
| standardizedIn | IETF TLS Working Group NERFINISHED ⓘ |
| supportsExtension |
Application-Layer Protocol Negotiation
NERFINISHED
ⓘ
Early Data ⓘ Encrypt-then-MAC ⓘ Extended Master Secret ⓘ Heartbeat ⓘ Key Share ⓘ Max Fragment Length ⓘ Next Protocol Negotiation ⓘ OCSP stapling ⓘ Pre-Shared Key ⓘ Record Size Limit ⓘ Renegotiation Indication ⓘ Server Name Indication ⓘ Session Ticket TLS ⓘ Session Tickets ⓘ Signature Algorithms ⓘ Status Request ⓘ Supported Elliptic Curves NERFINISHED ⓘ Supported Point Formats ⓘ Supported Versions ⓘ |
| usedBy |
HTTP/2 implementations
ⓘ
QUIC implementations ⓘ VPN implementations ⓘ XMPP servers ⓘ email servers ⓘ web browsers ⓘ web servers ⓘ |
| usedIn |
DTLS
NERFINISHED
ⓘ
TLS handshake ⓘ |
How these facts were elicited
The pipeline generated the facts above by prompting gpt-5.1 with this entity's name + description and the instruction below.
You are a knowledge base construction expert. Given a subject entity and a description of it, return factual statements that you know for the subject as a JSON list of dictionaries(triples), where keys must be "subject", "predicate" and "object". The number of facts may be very high, between 25 to 50 or more, for very popular subjects. For less popular subjects, the number of facts can be very low, like 5 or 10. # Requirements - If you don't know the subject at all, return an empty list. - If the subject is not a named entity, return an empty list. - Include at least one triple where predicate is "instanceOf". - Do not get too wordy. - Separate several objects into multiple triples with one object.
Subject: TLS extensions Description of subject: TLS extensions are optional protocol additions that enhance and customize Transport Layer Security (TLS) handshakes with extra capabilities such as server name indication, session tickets, and application-specific parameters.
Referenced by (1)
Full triples — surface form annotated when it differs from this entity's canonical label.