Professional Documents
Culture Documents
Secure Socket Layer & Transport Layer Security: 5/30/2015 Prof. N Ravi, Jerusalem College of Engineering 1
Secure Socket Layer & Transport Layer Security: 5/30/2015 Prof. N Ravi, Jerusalem College of Engineering 1
5/30/2015
HTTP
FTP
SMTP
FTP
TCP
IP
ESP
IP
Network approach
Transport approach
SET
S-HTTP
PGP
S/MIME
HTTP
TCP
IP
Application approach
5/30/2015
SMTP
SSL/PCT/TLS
TCP
AH
HTTP
FTP
SMTP
TCP
IP
Presentation approach
Prof. N Ravi, Jerusalem College of Engineering
5/30/2015
5/30/2015
FTPS
SMTPS
Application
layer
Transport
layer
TCP/IP layer
5/30/2015
SSL
Handshake
Protocol
SSL Change
Cipher Spec
Protocol
SSL Alert
Protocol
HTTP
TCP
IP
5/30/2015
FRAGMENT
FRAGMENT
FRAGMENT
COMPRESS
COMPRESS
ADD MAC
ENCRYPT
SSL -RH
5/30/2015
ENCRYPT
Minor
Version
Compressed
Length
ENCRYPTED
Content
Type
MAC
5/30/2015
Private
key
Client
request
Client
Public key
5/30/2015
10
Server
Private
key
Public
key
PreMaster
Session key
PreMaster
Client
Public key
5/30/2015
Pre-Master
Session key
11
Server
Private
key
Public
key
Session
key
Data
Session key
Data
Data
Client
Data
5/30/2015
Session key
Data
12
Server
Private
key
Public
key
Public
key
Session
key
Premaster
Hacker
Private
key
Public
key
Public
key
Session
key
Premaster
PrePublic
master
key
Client
Public key
5/30/2015
Pre-master
Prof. N Ravi, Jerusalem College of Engineering
13
Client
Client Finish
*Present Client Certificate
Client Key Exchange
*Certificate Verify
Change Cipher Spec
Server Finish
Change Cipher Spec
Server
Application Data
5/30/2015
14
15
5/30/2015
16
17
5/30/2015
18