RSA, . RSA, servers RSA DSS. Client_Hello.random, . RSA . (pre_master_secret) . (pre_master_secret) finished, , .
RSA , . , master_secret . , , Server_Hello.random, .
(Record Layer)
: (handshake protocol), (alert protocol), (the change cipher spec protocol), (application data protocol).
(handshake)
SSL . , , . , SSL . -. -, , . . , , , , . , ( , ) , .
, , . () . ( , , . , ( ) . , , , .
|
|
.
, , . , SSL , .
(Alert Protocol). , , . . , , , . , .
(Application Data Protocol). . , . .
SSL , , , .
SSL
SSL , . , .
SSL : , - (HTTP, FTP, IMAP, LDAP, Telnet ..) TCP/IP. , . , SSL -.
: ( ) ( - ). SSL , . SSL- , . , .
. , . , . , , . DES (Data Encryption Standard ), 3-DES ( DES), RC2, RC4, AES (Advanced Encryption Standard ).
. , . () , , . , , ( (subject)). . : . , , . , . , , . -, , , . -, , , , . . , RSA. SSL , , . . . ( ) ( ).
|
|
-. , . - , . , - . , , , - . . - MD5 (Message Digest 5 , 5 ) SHA-1 (Standard Hash Algorithm -). MD5 128 -, SHA-1 160 -. , : WHIRLPOOL, SHA-512, SHA-384, HAVAL, Tiger(2).
- , . MAC HMAC. MAC - Message Authentication Code . , - . MAC , . MAC , . SSL MAC.
HMAC - Hashed Message Authentication Code . HMAC MAC, - . , . , . HMAC TLC.
- . , , , MAC ( HMAC) () . , . () .