Discuss the security of communications channels. Include definitions and explanations for the terms Secure Sockets Layer/Transport Layer Security (SSL/TLS), secure negotiated session, session key, and VPN.

ISO 27001 focuses on the mechanisms that an organization should adapt to ensure the correct and safe operation of the resources on which corporate information is manipulated.

There must be a correct configuration of the systems, it is important that the tasks and related areas in these topics have adequate segregation of duties.

Secure Sockets Layer (SSL): SSL is a standardized technology that allows you to encrypt data traffic between a web browser and a website (or between two web servers), thus protecting the connection.

Transport Layer Security (TLS): TLS is an updated and more secure version of SSL.

Session key: A session key is a single-use symmetric key that is used to encrypt all messages in a communication session.

VPN (Virtual Private Network): It is a computer network technology that allows a secure extension of the local area network (LAN) over a public or uncontrolled network such as the Internet.