On network
good encryption makes theft hard
but web has no sessions
- must negotiate encryption for every request
- so good encryption = slow browsing
SSL (TLS) has widest support
- key length varies for political reasons
- may not be compatible between implementations