Definition

session layer

By

Gavin Wright
Andrew Froehlich, West Gate Networks

What is session layer?

The session layer is Layer 5 of the OSI communications model. It is the long-lived logical connection that persists between endpoints over time. A single session is all the back-and-forth communication between two endpoints. It helps a protocol to be more consistent and reliable. The TCP/IP protocol does not have a separate session layer, but it's functionality can be present in the TCP/IP application layer.

The session layer sits between the transport and the presentation layer in the OSI model. The transport layer consists of short-lived bursts of data, typically in packets. The transport layer isn't concerned if the computers are already in communication or not, it simply sends packets back and forth. The session layer organizes this start and stop traffic into an overall session between the two endpoints with a specific start and end point. The session layer then gives the coherent data it collected to the presentation layer.

Chart showing OSI model Layer 5 — The session layer, Layer 5 in the OSI communications model, is between the transport and the presentation layers.

The session layer is important for the internet to function because it can save bandwidth and processing power. Encrypted communication between two endpoints typically takes a lot of processing power at startup to create and send the shared secrets. By maintaining the single session between endpoints the same secrets can be used for some time. If there was no long-lived session, they would need to do the same expensive start up process each time they wanted to send a packet of data, which would be slow and take a lot of processing power to do.

Authentication can happen at the start of a session. Then all communication within that session could be considered as coming from the same source, without needing to re-authenticate for every sent data packet.

The session layer can contain checkpoints in the data to be transmitted. If the sent data were to be lost or corrupted during transmission, only the newest data since the last checkpoint would need to be retransmitted. This saves on the total amount of data transmitted. It also insulates the higher-level systems from being aware of low-level data transmission problems.

To help understand the session layer, imagine two people at a party. They would typically say hello to each other at the start of the party, initiating a long session between the two of them. The length of the conversation between when they say hello and goodbye would be one session. The sentences they say back and forth would be the transport layer; they could even talk about different topics, similar to the application layer. A single session could even be momentarily interrupted; perhaps one person stops to talk to someone else, but then goes back to talking to the original person again and continues the conversation without another greeting. When they say goodbye, it would end the session. Maybe much later they bump into each other and then say hello again, starting a new session.

The session layer is important in media streams. IT can help to combine separate data streams, such as one for audio and one for video, into a single session. This can be controlled with high-level protocols, such as the Session Initiation Protocol (SIP).

Chart showing how Session Initiation Protocol (SIP) works — Important in media streams, the session layer can help to combine separate data streams into a single session through high-level protocols such as the Session Initiation Protocol (SIP).

TCP/IP and the session layer

The OSI model is a theoretical construct of how communication between systems can be understood. It does not directly relate to any specific implementation. TCP/IP, on the other hand, is a practically implemented protocol that is used in modern computer networks and on the internet.

TCP/IP does not contain a specific session layer. Instead the functionality of the OSI session, presentation and application layers are all combined into the single TCP/IP application layer. So, any session functionality present on a TCP/IP network must be implemented on a higher-level protocol that lives on top of TCP/IP.

Session layer protocols

There are several different session layer protocols, including the following:

AppleTalk Data Stream Protocol (ADSP) and AppleTalk Session Protocol (ASP) (Deprecated).
H.245.
ITU X.225.
Layer 2 Forwarding (L2F) and Layer 2 Tunneling Protocol (L2TP).
Network Basic Input/Output System (NetBIOS).
Point-to-Point Tunneling Protocol (PPTP).
Real-time Transport Control Protocol (RTCP).
Remote Procedure Call (RPC).
Session Control Protocol (SCP).
SIP
SOCKS Proxy.

Learn how to identify and prevent OSI model Layers 4 to 7 security risks.

This was last updated in April 2023

Continue Reading About session layer

12 common network protocols and their functions explained

Choosing between an SSL/TLS VPN vs. IPsec VPN

9 most common network issues and how to solve them

Intro to encapsulation and decapsulation in networking

Prepare your answers for 15 server and networking interview questions

Dig Deeper on Cloud and data center networking

Unified Communications

Test your knowledge of E911 compliance requirements
Compliance with E911 regulations must be a core part of an organization's phone system strategy. Take this quiz to see how well ...
Microsoft adds AI tools for Copilot in Teams, collaboration
New generative AI capabilities enhance real-time meeting notetaking by identifying each speaker and enabling users to convert ...
Ensuring collaboration tool compliance and governance
Collaboration tool compliance and governance have grown increasingly complex as organizations adopt cloud-based tools that ...

Mobile Computing

How to use Managed Google Play with Microsoft Intune
IT teams can connect their Managed Google Play accounts to Intune to get the best of both management tools. Integrate the two for...
What is Managed Google Play and how should IT teams use it?
One of Android Enterprise's significant components is Managed Google Play. IT should understand how the platform can aid app ...
Could the iPhone 15's USB-C port drive device consolidation?
With the coming of the new iPhone with the USB-C port, organizations might look at this new compatibility feature as the impetus ...

Data Center

Data center air quality: The air servers breathe
Monitor data center air quality to ensure best working conditions for equipment. Particulates and gaseous contaminants cause ...
Use the data center circular economy for sustainability
Building data center servers and hardware requires use of many of Earth's nonrenewable resources. Data center owners must adopt ...
Broadcom completes VMware acquisition, promises investment
Broadcom plans to invest in VMware products that enable enterprises to build and modernize their private and hybrid cloud ...

ITChannel

5 IT services industry trends on tap for 2024
The top IT services industry trends for 2024 should sound familiar, with cost optimization and guarded innovation among the ...
AWS partners look to GenAI, competencies, marketplace sales
This week's AWS re:Invent conference was notable for AI, industry-specific offerings and accelerators, but partners also pointed ...
IT services M&A picks up in Q3 with deals in Europe
As transaction volume picks up, the EMEA region is getting more attention from IT services investors amid demand for digital ...

Close