SSL-Handshake- HTTPS
HTTP=everything will be in clear text
HTTPS=HTTP + SSL(Secure socket layer)
HTTPS=HTTP + SSL(Secure socket layer)
SSL= Cryptography
symmetric encryption==uses public key for encryption and decryption
asymmetric encryption=uses public key for encryption private key to decrypt the data
asymmetric encryption=uses public key for encryption private key to decrypt the data
working:
www.google.com
destination port=443
www.google.com
destination port=443
destination protocol=TCP
BROWSER--------------------SERVER
PC============>SERVER
TCP 3 way
TCP 3 way
Handshake protocol format:-
1)PC-->Client hello----->SERVER
number of cipher suits that i support
tls version
PC<-----server hello----<--server
server hello includes supported algorithms and pseudo-random number
server choose strongest cipher that both PC and server supports.
PC<-----certificate----<--server
Pc checks in it trusted root CA's to check if it valid or not
url:-https://cisco.com then CN=*.cisco.com or www.cisco.com etc..
server key exchange:-server-->
you will see this , only when server doesnt send public key along with its certificate
client key exchange:-client-->
The client creates a random Pre-Master Secret key
this key is encrypted using public Key from server certificate and sends in "client key exchange"
--->Now this can be decrypted by only private key which has with server.
server will decrypt using its private key and it will send an ACK with session key to start encrypted session.
SERVER and BROWSER all transmits data with this encrypted session key.
Public key:- TO encrypt the data -to Lock
Private key:- TO decrypt the data-to Unlock
Application data:-
Completely encrypted.
0 Response to "SSL-Handshake- HTTPS"
Post a Comment