Recall that TCP can be enhanced with SSL to provide process-to-process security services, including encryption. Does SSL operate at the transport layer or the application layer? If the application developer wants TCP to be enhanced with SSL, what does the developer have to do?
Consider the data:
TCP can be enhanced with SSL to provide process-to-process security services, including encryption. Then the Secure socket layer(SSL) operate the application layer, not transport layer.
The reason is that application layer is contains the high security and data hiding by encrypted data.