SSL 基础

转载 2006年05月22日 20:52:00

图胜千言:

 

TCP/IP Protocol Stack With SSL

TCP/IP Layer

Protocol

Application Layer

HTTP, IMAP, NNTP, Telnet, FTP, etc.

Secure Sockets Layer

SSL

Transport Layer

TCP

Internet Layer

IP

How SSL Works: the Handshake in Detail:

  1. Client hello - The client sends the server information including the highest version of SSL it supports and a list of the cipher suites it supports.
  2. Server hello - The server chooses the highest version of SSL and the best cipher suite that both the client and server support and sends this information to the client.
  3. Certificate - If server authentication is required then the server sends the client a certificate or a certificate chain.
  4. Certificate request - If the server needs to authenticate the client, it sends the client a certificate request.
  5. Server key exchange - The server sends the client a server key exchange message when the public key information sent in 3) above is not sufficient for key exchange.
  6. Server hello done - The server tells the client it is finished with its initial negotiation messages.
  1. Certificate - If the server requests a certificate from the client in Message 4, the client sends its certificate chain, like the server did in Message 3.
  2. Client key exchange - The client generates information used to create a key to use for symmetric encryption. For RSA, the client then encrypts this key information with the server's public key and sends it to the server.
  3. Certificate verify – If the server is authenticating the client, the client sends a random number that it digitally signs. When the server decrypts number with the client's public key, the server authenticates the client.
  4. Change cipher spec - The client tells the server to change to encrypted mode.
  5. Finished - The client sends the server a hash of the handshake messages.
  6. Change cipher spec - The server tells the client to change to encrypted mode.
  7. Finished - The server sends the client a hash of the handshake messages.

Encrypted data - The client and the server communicate using the symmetric encryption algorithm and the cryptographic hash function negotiated in Messages 1 and 2, using the secret key that the client sent to the server in Message 8.

相关文章推荐

加密、Ca 、SSL基础知识

  • 2016-02-03 08:56
  • 2.51MB
  • 下载

基础连接已经关闭: 未能为 SSL/TLS 安全通道建立信任关系

基础连接已经关闭: 未能为 SSL/TLS 安全通道建立信任关系 问题分析:     Could not establish trust relationship for the SSL/TL...

"安全证书上的名称无效或者与站点名称不匹配" 的原因 -SSL和CA基础知识

SSL 安全协议最初是由美国网景 Netscape Communication 公司设计开发的,全称为:安全套接层协议 (Secure Sockets Layer) , 它指定了在应用程序协议 ( 如...

Java RMI从基础例子到使用securityManager再到ssl的RMI在到spring的RMI

什么是RMI,请参考看RMI远程调用部分。 额,很多人都说RMI没什么用,直接使用WebService就可以了。但是我觉得使用一些简单的,只用于自己开发的系列JAVA软件之间的远程调用的时候RMI还是...

com.sun.net.ssl.jar

  • 2017-10-12 11:29
  • 429KB
  • 下载

SSL双向认证

  • 2017-03-02 15:22
  • 16KB
  • 下载

Java之——发邮件-QQ服务器认证(A secure connection is requiered(such as ssl))

Java发邮件的几种方式     JavaMail     Commons Email     Spring Mail JavaMail是Java提供的发邮件API Commons Email是Ap...

httpd-2.2.22-win32-x86-no_ssl.msi

  • 2015-09-19 21:54
  • 5.42MB
  • 下载

ssl的配置方法

  • 2015-07-31 16:38
  • 413B
  • 下载
内容举报
返回顶部
收藏助手
不良信息举报
您举报文章:深度学习:神经网络中的前向传播和反向传播算法推导
举报原因:
原因补充:

(最多只允许输入30个字)