How does HTTPS/SSL work?

Do you have a question? Post it now! No Registration Necessary.  Now with pictures!

Threaded View
I setup a http/https server on my router.
I also upload certification file and private key file to the router.
Does it need public key and IE has public/private
keys by default talk to my router?
Does the certification only make sure the server
he/she connect to is correct? (from secrity alert-->
view certificate. right?)

Thanks in advance!


Re: How does HTTPS/SSL work?

Quoted text here. Click to load it
The exact details are pretty complicated.

If you were using apache with mod_ssl, and if you had set apache to request
mutual authentication, the server and client would perform an interchange
that would permit both to know with some certainty the identity of the
on the other end.

The information in the X.509 certificate of that the client presented would
made available in the environment variables of the Apache process. The
could then decide what operations are authorized for that client.

To learn more about the detail, see the book titled "Apache Professional"
and the book "SSL and TLS" by Rescorla.

Site Timeline