Want to improve this question? Add details and clarify the problem by editing this post.
Closed 9 years ago.
相信客户和服务器希望利用SSL在网络上进行通信,
用户使用服务器的公用钥匙对电文1进行加密;向服务器发送电文1;服务器将使用服务器的私人钥匙对电文1进行加密。
服务器使用服务器的私人钥匙(>)对电文2进行加密;向客户发送电文2;客户使用服务器的公用钥匙对电文2进行加密。
我这里的问题是,在第2号案件中,如果对手拿到服务器的公用钥匙(是公用的),那么他就能够加密电文2、该权利或我在这里找不到的东西?
如果你用“私人”钥匙,即是,任何人都能够使用“公共”钥匙将其编码。 如果“公共”钥匙是公开的,那就非常安全。
我认为,你有某种混淆,不过,在营养餐厅,SSL只是利用公用钥匙加密交换秘密钥匙,并利用这一秘密钥匙进行通信的其余部分。
Asymmetric/public-key crypto is much slower than symmetric/secret-key, so public key is only used briefly- to acquire its properties (i.e. identification) and then it "switches" to faster secret key encryption.
I have SSL on my website....when the user logs in from a http page the form action is sent to https page, would this still secure the posted data? Or would it be better to have the form and the page ...
Iam using HTTPClient 4.0 to connect a remote server and transfer file using HTTPS. When i tried to connect i get the exception "java.net.SocketException: Unconnected sockets not implemented". Please ...
We ve deployed our rails app to EC2. In our setup, we have two proxies on small instances behind round-robin DNS. These run nginx load balancers for a dynamically growing and shrinking farm of web ...
I m using the Spring RESTTemplate on the client side to make calls to a REST endpoint. The client in this case is a Spring app and Tomcat is the servlet container. I m running into issues making a ...
As far as I understand, https is http plus SSL/TLS. What do I need to do if I want to add 3 more parameters for the header? I found a file inside Mozilla s NSS - ssl3ext.c, but I don t understand it ...
Consider the following sample code which uses a TrustManager to log whether an outgoing connection used a valid certificate (but accept the connection in all cases): import java.security.*; import ...
I m trying to use Hudson (which uses SVNKit) to access a Subversion repository that requires a client certificate to access it. I can access the same repository using the same client certificate via ...
I m trying to send emails from a python script with smtplib, and it works with no problems with smtp through Exchange 2003, but with Exchange 2007 shows: SMTPException: No suitable authentication ...
