SSL/TLS  handshake Protocol

SSL/TLS handshake Protocol

What protocol is used between a web server and its clients to establish trust? How do they negotiate and share the secret key? During the handshake process, how public key encryption algorithm is used and how private key encryption is used? In this video, you would find all these answers.

Playlist: Advanced Cryptography –

Playlist: Basic Cryptography

Please subscribe to my channel!
Please leave comments or questions!
Many thanks,
Sunny Classroom

43 thoughts on “SSL/TLS handshake Protocol

  1. When it comes to the TCP/IP model, there is no Network layer but the Internet layer. Anyway, I enjoy watching your videos and subscribed your channel.

  2. Why would the client need to communicate with CA? The whole point of certificates is to not have to do it, right? I also heard that there are other methods of authetication in TLS than the presented RSA. What is with Deffie-Hellmann?
    I’m afraid this video is not complete 😐
    Hey, if I’m wrong please answer me!

  3. Thank you very much for explaining in a way that is easy to understand. Watched several videos before this and it was still confusing. Glad that I came across your video. Thank you for your contributions.

  4. Why do they use a symmetric shared key? Why dont they both have public keys of their own, and their own private keys?

  5. Done thanks
    2:50 protocol example
    Client encrypts a shared symmetric key with the server’s public key (after verifying the servers identity with a CA)

  6. Sunny, I have a question.. Does SSL handshake happens for each request or will there be any session which browser maintains

  7. Form your explanation it seems like they just share the secret key right away. But in reality, they agree on a premaster secret and shared secret key is generated from it. (Diffie Hellman)

  8. Hi, Sunny, thanks for the wonderful explaination. One quick question in mind. So in the video, the client verify the server by checking its public certificate. But how does the server check the validity of the client?

  9. Why would the browser ever talk to the CA? Doesn't it have a list of trusted CAs and their respective public keys locally?

Leave a Reply

Your email address will not be published. Required fields are marked *