Abstract
- Using Certificate Authority (CA) & Asymmetric Cryptography to perform Symmetric Key Exchange.
- Takes 2 Network Round-trip - Certificate Check& Symmetric Key Exchange
Certificate Check
- X.509 Certificate is exchanged over the Computer Network
Symmetric Key Exchange
-
Client uses Public Key in X.509 Certificate to encrypt the Symmetric Key it generated
-
Server use its Private Key to obtain the Symmetric Key
-
Now both client & server can communicate with each other with data encrypted in-transit using Symmetric Encryption which is way more efficient than Asymmetric Cryptography
Session Key
- The Symmetric Key obtained from Symmetric Key Exchange