SSL server authentication and SSL Handshake

SSL server authentication and SSL Handshake

The Standard SSL Handshake


The following is a standard SSL handshake when RSA key exchange algorithm is used:






1.  Client Hello


Information that the server needs to communicate with the client using SSL. This includes the SSL version number, cipher settings, session-specific data.





2.  Server Hello

Information that the server needs to communicate with the client using SSL. This includes the SSL version number, cipher settings, session-specific data.




3.  Authentication and Pre-Master Secret

Client authenticates the server certificate. (e.g. Common Name / Date / Issuer) Client (depending on the cipher) creates the pre-master secret for the session, Encrypts with the server's public key and sends the encrypted pre-master secret to the server.




4.  Decryption and Master Secret

Server uses its private key to decrypt the pre-master secret. Both Server and Client perform steps to generate the master secret with the agreed cipher.



5.  Encryption with Session Key

Both client and server exchange messages to inform that future messages will be encrypted.







                New to ADManager Plus?

                  New to ADSelfService Plus?

                    • Related Articles

                    • How Pass Through Authentication Works

                      NTLMV2 is a protocol supported by Microsoft in order to overcome the security issues of NTLMV1 and the same is implemented in ServiceDesk Plus. What's the protocol defines? When a service wants to initiate the Single-sign-on, first a secure channel ...
                    • SSL Installation

                      Do you have a Wildcard or a Multi-domain certificate already running in your other servers and want to reinstall in on ServiceDesk Plus server ?, then click here to find how to export SSL certificate using MMC.  Do you already have a .PFX certificate ...
                    • Step-by-step: SSL Installation

                      In ServiceDesk Plus, we use a keystore file to store the private key and this keystore file will be used by the web server to secure the connections. Below are the steps that needs to be followed to generate a keystore file and install the ...
                    • How to install SSL certificate in AssetExplorer

                      SSL Installation Do you have a Wildcard or a Multi-domain certificate already running in your other servers and want to reinstall in on AssetExplorer server ?, then click here to find how to export SSL certificate using MMC.  Do you already have a ...
                    • How to Export SSL certificate using MMC?

                      When an SSL certificate is already installed on a Windows server, you may want to reinstall it on ServiceDesk Plus server. This may be required when you have a Wildcard or a Multi-domain certificate, and the subdomains or different domains are hosted ...