THE DFIR BLOG
Menu

SSL Certificate

11/6/2022

1 Comment

 
 What is SSL Certificate ?
  • Establishes a secure (encrypted) connection between the Client and the Server to maintain. SSL certificate is web servers digital web server issued by a third party.
How SSL works?
Scenario - I want to connect to a web server, and all communication should be encrypted.
  1. Client Browser requests secured pages from the web server.
  2. The server sends its public key with SSL Certificate digitally signed by an external third party known as Certificate Authority (CA)
  3. Once the Client Browser gets the certificate, it will check the issuer’s digital certificate to ensure its valid.
  4. The client browser will use the CA’s public key (Already in the browser) to verify the Certificate. Please note CA sign’s the certificate with its private key.
  5. Once the signature is verified, then it can be trusted, and the Padlock icon in the browser appears.
  6. After verification, the client browser creates a symmetric key and sends it server by encrypting it with the server’s public key

What are well known Certificate Authority (CA)?
Comodo, Digicert, GlobalSign etc.
1 Comment

    Subscribe to Newsletter

    Archives

    November 2022
    January 2022
    October 2021
    September 2021
    July 2021

    Categories

    All
    Domain8

    RSS Feed

  • Infosec
  • Mac Forensics
  • Windows Forensics
  • Linux Forensics
  • Memory Forensics
  • Incident Response
  • Blog
  • About Me
  • Infosec
  • Mac Forensics
  • Windows Forensics
  • Linux Forensics
  • Memory Forensics
  • Incident Response
  • Blog
  • About Me