Ge Zhang
SSL Architecture
SSL &an sha'e !rotoco" SSL -hange -ipher Spec( !rotoco" SSL Recor !rotoco" T-! )! SSL A"ert !rotoco" &TT!/ etc(
Recor !rotoco"# $essage encryption%authentication &an sha'e !(# ) entity authentication & 'ey e*change A"ert !(# +rror notification (cryptographic or other,ise) -hange -ipher !(# Acti.ate the pen ing crypto suite
Server
Server
Server
Server
SSL +ncryption
$aster secret
1 Generate by both parties fro0 pre0aster secret an ran o0 .a"ues generate by both c"ient an ser.er
?ey 0ateria"
1 Generate fro0 the 0aster secret an share ran o0 .a"ues
+ncryption 'eys
1 +*tracte fro0 the 'ey 0ateria"
M C (!"#$" or %! &ytes)
A"erts an -"osure
A"ert the other si e of e*ceptions
1 1 1 1 1 1 2ne*pecte 0essage @a recor 0ac &an sha'e fai"ure )""ega" para0eter @a certificate A
6 "e.e"s
1 Warning 1 fata"