28 Jan '15, 4pm

The SSL/TLS handshake

The SSL/TLS handshake

When the client establishes a secure connection, a SSL/TLS handshake is performed between the client and server. The client initiates the handshake with a client hello message, which contains, amongst other parameters, a client_version field. According to RFC 5246 (TLS version 1.2), this field should contain the latest version of the TLS protocol that the client supports. Common values include “{3,0}” for SSL 3.0, “{3,1}” for TLS 1.0, “{3,2}” for TLS 1.1 and “{3,3}” for TLS 1.2. The server must respond to this message with the server hello message. This response contains a server_version field, which either confirms the client-specified TLS version if the server supports it, or informs the client of the latest TLS version supported by the server. In the latter case, if the client agrees to use the server specified version, then the handshake will proceed as normal; otherwi...

Full article: http://www.ecnmag.com/articles/2015/01/ssl-tls-handshake

Tweets