SSL

两个作用,encription and identification

  • 同意加密方法
  • 服务器发送证书
  • 你的计算机说开始加密
  • 服务器说开始加密
  • 开始加密

TLS

取代ssl。防止tamper data。shared secret, session key, symmetric key.两种方法,key generation(Diffie-Hellman), key exchange(rsa)。handshake protocol and the record protocol. signed certificate 1. digest 2. encript using rsa and ca private key

http://www.moserware.com/2009/06/first-few-milliseconds-of-https.html