All versions of HTTP transmit HTTP headers and document content without any encryption. Since no encryption is used, it is possible for a network eavesdropper to view all HTTP transactions between a web browser and web server. In general, web servers do not provide confidential data so encrypted HTTP is not needed. However, there are servers that provide services such as online banking and credit card payments. In order to make these services secure, an encrypted version of HTTP was developed. Secure HTTP (known as HTTPS) was developed by Netscape Communications Corporation and is implemented as HTTP on top of a Secure Sockets Layer (SSL)[10]. HTTPS transactions are identical to HTTP transactions except that the web browser and web server communicate over an encrypted SSL channel. All data sent over this channel is encrypted and therefore cannot be seen by a network eavesdropper.