SL communication will start with below Steps
1)Client Hello
The first message is the ClientHello. Since the client machine is requesting the
secure communication session, this message involves a set of options that the client is
willing to use in order to communicate with the server. The option categories are:
Version of SSL to be used, CipherSuites supported by the client, and
CompressionMethods used by the client. Other information that is included in this
message is a 32-byte RandomNumber that assists the client in establishing encrypted
communications, and a SessionID field that is blank.
*** ClientHello, TLSv1
The client sends the server the client’s SSL version number, cipher settings, randomly generated data, and other information the server needs to communicate with the client using SSL.
2)Server Hello:
Server sends the client the server’s SSL version number, cipher settings, randomly generated data, and other information the client needs to communicate with the server over SSL. The server also sends its own certificate
3)Authentication and Pre-Master Secret
- Client authenticates the server certificate. (e.g. Common Name / Date / Issuer)
- Client creates premaster key
- Encrypts with the server's public key and sends the encrypted pre-master secret to the server.
4)Decryption and Creation of Master Secret
- server decripts pre-master key using his own private key.
- Server and Client Creates master secret with the agreed cipher.
5)Generate Session Keys
client and the server use the master secret to generate the session keys, which are symmetric keys used to encrypt and decrypt information exchanged during the SSL session
6)Encryption with Session Key
client and server exchange messages to inform that future messages will be encrypted.
1)Client Hello
The first message is the ClientHello. Since the client machine is requesting the
secure communication session, this message involves a set of options that the client is
willing to use in order to communicate with the server. The option categories are:
Version of SSL to be used, CipherSuites supported by the client, and
CompressionMethods used by the client. Other information that is included in this
message is a 32-byte RandomNumber that assists the client in establishing encrypted
communications, and a SessionID field that is blank.
*** ClientHello, TLSv1
The client sends the server the client’s SSL version number, cipher settings, randomly generated data, and other information the server needs to communicate with the client using SSL.
2)Server Hello:
Server sends the client the server’s SSL version number, cipher settings, randomly generated data, and other information the client needs to communicate with the server over SSL. The server also sends its own certificate
3)Authentication and Pre-Master Secret
- Client authenticates the server certificate. (e.g. Common Name / Date / Issuer)
- Client creates premaster key
- Encrypts with the server's public key and sends the encrypted pre-master secret to the server.
4)Decryption and Creation of Master Secret
- server decripts pre-master key using his own private key.
- Server and Client Creates master secret with the agreed cipher.
5)Generate Session Keys
client and the server use the master secret to generate the session keys, which are symmetric keys used to encrypt and decrypt information exchanged during the SSL session
6)Encryption with Session Key
client and server exchange messages to inform that future messages will be encrypted.
No comments:
Post a Comment