Cheatsheet: Difference between revisions
→SSL Handshake
Line 421:
Client Hello:
Protocol Version Version of the SSL protocol by which the client wishes to communicate during this session.
Session ID ID client wishes to use for this connection. In first Client Hello of exchange, the session ID is empty.
Cipher Suite Cryptographic Algorithms supported by the client; First choice first; Each contains Key Exchange Algorithm and a Cipher Spec.
Compression Method List of compression algorithms supported by the client. If server does not support any method, the connection fails. This can also be null.
Server Hello:
Protocol Version Chosen version of the SSL protocol that the client supports.
Session ID This is the identity of the session that corresponds to this connection.
If session ID sent by the Client in the Client Hello is not empty, server looks in the session cache for a match.
If a match is found, the server responds with the same value that was supplied by the client.
This indicates a resumed session and both must directly proceed to Finished messages.
If this field contains a different value that identifies the new session.
If server sends empty Session_ID, it indicate that the session will not be cached, and therefore cannot be resumed.
Cipher Suite Selected by the server from the list.
Compression Method Selected by the server from the list.
Certificate Request The server sends the client a list of all the certificates that are configured on it
Allows the client to select which certificate it wants to use for authentication.
= NetScaler =
| |||