Edit securesocket.md

Edit file for minor grammar and formatting nits.

Author: Amanda Butler

docs/reference/technology/connectivity/securesocket.md

@@ -1,14 +1,14 @@
 ## Secure Socket
 
-Mbed OS provides an interface for creating secure connections in the form of TLS stream. The `TLSSocketWrapper` class provides the ability to secure any stream-based socket connection, for example TCP stream. This allows you to use existing protocol libraries through a secure connections.
+Mbed OS provides an interface for creating secure connections in the form of TLS stream. The `TLSSocketWrapper` class gives you the ability to secure any stream-based socket connection, for example TCP stream. This allows you to use existing protocol libraries through secure connections.
 
-`TLSSocketWrapper` inherits the `Socket` class, which allows any application that uses `Socket` to use `TLSSocketWrapper` instead. Secure socket both uses Socket interface as its transport layer and implements it. This makes it transport independent, and there is no direct dependency on the IP stack. For example, you can use the HTTP library and give `TLSSocketWrapper` to it to covert it to HTTPS.
+`TLSSocketWrapper` inherits the `Socket` class, which allows any application that uses `Socket` to use `TLSSocketWrapper` instead. Secure socket both uses the Socket interface as its transport layer and implements it. This makes it transport independent, and there is no direct dependency on the IP stack. For example, you can use the HTTP library and give `TLSSocketWrapper` to it to covert it to HTTPS.
 
-For easy to use API there is helper class called `TLSSocket` that contains internal TCP socket for transport stream.
+The helper class called `TLSSocket` contains internal TCP socket for transport stream.
 
 ### Usage example
 
-`TLSSocketWrapper` implements Mbed OS Socket API and extends it with functions that allow configuring security certificates, so it is straightforward to use after setting up. Please note that for most of the use cases, you are using these methods through `TLSSocket` class.
+`TLSSocketWrapper` implements the Mbed OS Socket API and extends it with functions that allow configuring security certificates, so it is straightforward to use after setting up. Please note that for most of the use cases, you are using these methods through `TLSSocket` class:
 
 ```
 TLSSocket *socket = new TLSSocket();
@@ -26,11 +26,11 @@ Please note that internal TLS structures require over 1 kB of RAM, so you need t
 
 Internally `TLSSocket` consists of two classes, `TLSSocketWrapper` and `TLSSocket`, as shown in the following diagram:
 
-![TLSSocket UML](tlssocket.png)
+<span class="images">![TLSSocket UML](https://s3-us-west-2.amazonaws.com/mbed-os-docs-images/tlssocket.png)<span>TLSSocket UML</span></span>
 
 The `TLSSocketWrapper` can use any `Socket` as its transport. `TLSSocket` is a helper that uses directly `TCPSocket` for its transport, so you can adopt existing TCP based applications to TLS.
 
-One use case of `TLSSocketWrapper` is that existing TCP socket can be upgraded to TLS, by wrapping it like this:
+One use case of `TLSSocketWrapper` is that you can upgrade the existing TCP socket to TLS, by wrapping it like this:
 
 ```
 TCPSocket connection;
@@ -52,7 +52,7 @@ tls.send("HELLO", 5);
 
 #### Configuring certificates
 
-`TLSSocketWrapper` provides the following API to set server certificate. You can use either BASE64 formatted PEM certificate or binary DER certificates. The later form of these functions assumes `root_ca_pem` or `client_cert_pem` to be standard C string, counts its length and passes to method, which takes only `void*` and `len`.
+`TLSSocketWrapper` provides the following API to set server certificate. You can use either BASE64 formatted PEM certificate or binary DER certificates. The latter form of these functions assumes `root_ca_pem` or `client_cert_pem` to be standard C string, counts its length and passes to method, which takes only `void*` and `len`.
 
 ```
 /** Sets the certification of Root CA.
@@ -90,19 +90,19 @@ nsapi_error_t TLSSocketWrapper::set_client_cert_key(const char *client_cert_pem,
 
 #### Socket API
 
-`TLSSocketWrapper` implements [Mbed OS Socket API](../apis/network-socket.html) as follows.
+`TLSSocketWrapper` implements the [Mbed OS Socket API](../apis/network-socket.html):
 
 ```
 virtual nsapi_error_t close();
 ```
 
-Destroys the memory allocated by TLS library. Also closes the transport socket, unless [transport mode](#transport-modes) is set to `TRANSPORT_KEEP` or `TRANSPORT_CONNECT`.
+This destroys the memory the TLS library allocates. It also closes the transport socket, unless [transport mode](#transport-modes) is set to `TRANSPORT_KEEP` or `TRANSPORT_CONNECT`:
 
 ```
 virtual nsapi_error_t connect(const SocketAddress &address);
 ```
 
-Initiates the TCP connection and continues to TLS hanshake. If [transport mode](#transport-modes) is either `TRANSPORT_KEEP` or `TRANSPORT_CLOSE`, TCP is assumed to be open and state directly goes into TLS handshake. This is currently forced to blocking mode. After succesfully connecting, you can set it to non-blockin mode.
+The code above initiates the TCP connection and continues to TLS hanshake. If [transport mode](#transport-modes) is either `TRANSPORT_KEEP` or `TRANSPORT_CLOSE`, TCP is assumed to be open and state directly goes into TLS handshake. This is currently forced to blocking mode. After succesfully connecting, you can set it to nonblocking mode:
 
 ```
 virtual nsapi_size_or_error_t send(const void *data, nsapi_size_t size);
@@ -111,11 +111,11 @@ virtual nsapi_size_or_error_t sendto(const SocketAddress &address, const void *d
 virtual nsapi_size_or_error_t recvfrom(SocketAddress *address, void *data, nsapi_size_t size);
 ```
 
-These work as expected, but `SocketAddress` parameters are ignored. TLS connection cannot change the peer. Also `recvfrom()` call does not set the peer address.
+These work as expected, but `SocketAddress` parameters are ignored. The TLS connection cannot change the peer. Also, `recvfrom()` call does not set the peer address.
 
 Mbed TLS error codes `MBEDTLS_ERR_SSL_WANT_READ` and `MBEDTLS_ERR_SSL_WANT_WRITE` are translated to `NSAPI_ERROR_WOULD_BLOCK` before passing to user.
 
-`MBEDTLS_ERR_SSL_PEER_CLOSE_NOTIFY` is ignored and zero is returned to user (connection closed). Other error codes are passed through.
+`MBEDTLS_ERR_SSL_PEER_CLOSE_NOTIFY` is ignored, and zero is returned to you (connection closed). Other error codes are passed through:
 
 ```
 virtual nsapi_error_t bind(const SocketAddress &address);
@@ -133,25 +133,24 @@ virtual Socket *accept(nsapi_error_t *error = NULL);
 virtual nsapi_error_t listen(int backlog = 1);
 ```
 
-These are returning `NSAPI_ERROR_UNSUPPORTED` as TLS socket cannot be set to listening mode.
+These are returning `NSAPI_ERROR_UNSUPPORTED` as you can't set TLS socket to listening mode.
 
 #### Transport modes
 
-`TLSSocketWrapper` has four modes that are given in the constructor and affect how the transport Socket is used in connection and closing phases.
+`TLSSocketWrapper` has four modes that are given in the constructor and affect how the transport Socket is used in connection and closing phases:
 
-|Mode|Behaviour on trasport socket|
+|Mode|Behavior on trasport socket|
 |----|----------------------------|
 |TRANSPORT_KEEP | Keep the transport as it is. Does not call `connect()` or `close()` methods. |
 |TRANSPORT_CONNECT_AND_CLOSE | Both `connect()` and `close()` are called. (default) |
-|TRANSPORT_CONNECT | Call `connect()` but do not close the connection when finished.  |
+|TRANSPORT_CONNECT | Call `connect()`, but do not close the connection when finished.  |
 |TRANSPORT_CLOSE | Call `close()` when connection is finished. |
 
-Default mode is `TRANSPORT_CONNECT_AND_CLOSE`.
+The default mode is `TRANSPORT_CONNECT_AND_CLOSE`.
 
+#### Advanced use: using internal Mbed TLS structures
 
-#### Advanced usage: using internal Mbed TLS structures
-
-User may choose to use internal Mbed TLS structures to configure the TLS instance. This is supported by exposing some Mbed TLS structures like this:
+You may choose to use internal Mbed TLS structures to configure the TLS instance. This is supported by exposing some Mbed TLS structures like this:
 
 ```
 mbedtls_x509_crt *get_own_cert();
@@ -162,10 +161,10 @@ mbedtls_ssl_config *get_ssl_config();
 void set_ssl_config(mbedtls_ssl_config *);
 ```
 
-For guidance of how to use these, please refer to Mbed TLS documentation.
+For guidance of how to use these, please refer to the [Mbed TLS documentation](../apis/tls.html).
 
 ## Related content
 
-- [Security Overview](../apis/security.html)
+- [Security overview](../apis/security.html).
 - [TLSSocket](../apis/tlssocket.html) API reference.
-- [DTLSSocket](../apis/dtlssocket.html) API reference
+- [DTLSSocket](../apis/dtlssocket.html) API reference.