SSL Query

A

amsical

Hi,

SSL can be used in the following 2 situations:
1. Where Server and Client know each other
2. Where Server and Client does not know each other e.g. secure public sites
like e-bay

In the first scenario above, Server will have Server Certificate and Client
will have Client Certificate. Server will encrypt a message using Client's
public key and Client will encrypt a message using Server's public key. Each
will use their own Private key to decrypt the same.

Now, in the second scenario above, Server will have Server Certificate but
Client will not have Client Certificate. Client can encrypt a message using
Server's public key. But how the Server will send the encrypted message in
absence of no Client Certificate? or is it that a temporary public-private
key is provided to the client?

Thanks,
Tim
 
J

jwgoerlich@gmail.com

Wikipedia goes into this in-depth, so I will not repeat all of it
here. At a high-level, both the client and server in situation (2)
negotiate the cipher and key material. They exchange random numbers
and generate public-private key pair from this exchange. This results
in a session key which is temporary, unique to the connection, and
separate from the server certificate.

Regards,

J Wolfgang Goerlich


Related Links:

Wikipedia, Transport Layer Security
http://en.wikipedia.org/wiki/Transport_Layer_Security#How_it_works

Microsoft Technet, SSL/TLS in Detail
http://technet2.microsoft.com/windo...70bf-4bd7-a043-9ba721595e271033.mspx?mfr=true

On Sep 8, 1:38 pm, amsical <amsi...@discussions.microsoft.com> wrote:
> Hi,
>
> SSL can be used in the following 2 situations:
> 1. Where Server and Client know each other
> 2. Where Server and Client does not know each other e.g. secure public sites
> like e-bay
>
> In the first scenario above, Server will have Server Certificate and Client
> will have Client Certificate. Server will encrypt a message using Client's
> public key and Client will encrypt a message using Server's public key. Each
> will use their own Private key to decrypt the same.
>
> Now, in the second scenario above, Server will have Server Certificate but
> Client will not have Client Certificate. Client can encrypt a message using
> Server's public key. But how the Server will send the encrypted message in
> absence of no Client Certificate? or is it that a temporary public-private
> key is provided to the client?
>
> Thanks,
> Tim
 
You must log in or register to reply here.

Similar threads

N
Ignite 2022: What's new in Windows Server Azure Edition
Replies
0
Views
69
Ned Pyle
N
N
Feedback on Hotpatch, SMB over QUIC, and Extended Network in Azure Edition
Replies
0
Views
47
Ned Pyle
N
M
How to fix error 0x80071771 "the specified file could not be decrypted"?
Replies
0
Views
81
Mujtabaa Masood Khan
M
B
  • Article
Announcing Windows 11 Insider Preview Build 25992 (Canary Channel)
Replies
0
Views
59
Brandon LeBlanc
B
J
The Future of Windows Server Hyper-V is Bright!
Replies
0
Views
79
Jeff Woolsey
J
Back
Top Bottom