search
HomeCommon ProblemWhat is the way ssl generates session key

The way ssl generates a session key is to randomly generate it from the client and notify the server after encrypting it; ssl and its successor transport layer security is a security protocol that provides security and data integrity for network communications; TLS Encrypt network connections between the transport layer and application layer with SSL.

What is the way ssl generates session key

Recommended: "Programming Video"

The way ssl generates a session key is randomly generated by the client and Notify the server after encryption.

SSL (Secure Sockets Layer) and its successor Transport Layer Security (TLS) are a security protocol that provides security and data integrity for network communications. TLS and SSL encrypt network connections between the transport layer and the application layer.

The specific process of two-way authentication SSL protocol
① The browser sends a connection request to the security server.
② The server sends its own certificate and certificate-related information to the client browser.
③ The client browser checks whether the certificate sent by the server is issued by the CA center it trusts. If it is, continue to execute the agreement; if not, the client's browser will give the client a warning message: warn the client that this certificate is not trustworthy, and ask the client if it needs to continue.
④ Then the client browser compares the information in the certificate, such as the domain name and public key, with the relevant message just sent by the server. If they are consistent, the client browser recognizes the legal identity of the server.
⑤ The server requires the client to send the client's own certificate. After receiving it, the server verifies the client's certificate. If it fails the verification, it refuses the connection; if it passes the verification, the server obtains the user's public key.
⑥ The client browser tells the server the communication symmetric encryption scheme it can support.
⑦ The server selects the password scheme with the highest degree of encryption from the password scheme sent by the client, encrypts it with the client's public key and notifies the browser.
⑧ For this password scheme, the browser selects a call key, then encrypts it with the server's public key and sends it to the server.
⑨ The server receives the message sent by the browser, decrypts it with its own private key, and obtains the call key.
⑩ The subsequent communication between the server and the browser uses a symmetric encryption scheme, and the symmetric key is encrypted.
The commonly used https is not two-way, there is no ⑤
This problem occurs at ⑧

The above is the detailed content of What is the way ssl generates session key. For more information, please follow other related articles on the PHP Chinese website!

Statement
The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn

Hot AI Tools

Undresser.AI Undress

Undresser.AI Undress

AI-powered app for creating realistic nude photos

AI Clothes Remover

AI Clothes Remover

Online AI tool for removing clothes from photos.

Undress AI Tool

Undress AI Tool

Undress images for free

Clothoff.io

Clothoff.io

AI clothes remover

AI Hentai Generator

AI Hentai Generator

Generate AI Hentai for free.

Hot Article

R.E.P.O. Energy Crystals Explained and What They Do (Yellow Crystal)
1 months agoBy尊渡假赌尊渡假赌尊渡假赌
R.E.P.O. Best Graphic Settings
1 months agoBy尊渡假赌尊渡假赌尊渡假赌
R.E.P.O. How to Fix Audio if You Can't Hear Anyone
1 months agoBy尊渡假赌尊渡假赌尊渡假赌
R.E.P.O. Chat Commands and How to Use Them
1 months agoBy尊渡假赌尊渡假赌尊渡假赌

Hot Tools

SublimeText3 Mac version

SublimeText3 Mac version

God-level code editing software (SublimeText3)

PhpStorm Mac version

PhpStorm Mac version

The latest (2018.2.1) professional PHP integrated development tool

Safe Exam Browser

Safe Exam Browser

Safe Exam Browser is a secure browser environment for taking online exams securely. This software turns any computer into a secure workstation. It controls access to any utility and prevents students from using unauthorized resources.

SublimeText3 Linux new version

SublimeText3 Linux new version

SublimeText3 Linux latest version

MinGW - Minimalist GNU for Windows

MinGW - Minimalist GNU for Windows

This project is in the process of being migrated to osdn.net/projects/mingw, you can continue to follow us there. MinGW: A native Windows port of the GNU Compiler Collection (GCC), freely distributable import libraries and header files for building native Windows applications; includes extensions to the MSVC runtime to support C99 functionality. All MinGW software can run on 64-bit Windows platforms.