SSL Messages - Blackbaby - ITeye博客

`

Blackbaby

浏览: 184881 次
性别:
来自: 成都

最近访客更多访客>>

491642555

xx5333

xyc1985414

simon518

博主相关

博客

微博

相册

收藏

留言

关于我

文章分类

社区版块

存档分类

最新评论

donggongai： Blackbaby 写道mazhi4562qq 写道moist ...
openfire集成现有系统的用户表
Blackbaby： mazhi4562qq 写道moistrot 写道哥们，你集成 ...
openfire集成现有系统的用户表
mazhi4562qq： moistrot 写道哥们，你集成成功了吗？我这样集成之后，登 ...
openfire集成现有系统的用户表
dxcsingle：哥们我如今也遇到这个问题能讲哈怎么处理么？
openfire集成现有系统的用户表
hooktoo：该例子有很严重的问题，java没释放内存
JNative dll回调函数使用实例

SSL Messages

博客分类：

java

阅读更多

ssl messages

The SSL messages are sent in the following order:

Client hello - The client sends the server information including the highest version of SSL it supports and a list of the cipher suites it supports. (TLS 1.0 is indicated as SSL 3.1.) The cipher suite information includes cryptographic algorithms and key sizes.
Server hello - The server chooses the highest version of SSL and the best cipher suite that both the client and server support and sends this information to the client.
Certificate - The server sends the client a certificate or a certificate chain. A certificate chain typically begins with the server's public key certificate and ends with the certificate authority's root certificate. This message is optional, but is used whenever server authentication is required.
Certificate request - If the server needs to authenticate the client, it sends the client a certificate request. In Internet applications, this message is rarely sent.
Server key exchange - The server sends the client a server key exchange message when the public key information sent in 3) above is not sufficient for key exchange.
Server hello done - The server tells the client that it is finished with its initial negotiation messages.
Certificate - If the server requests a certificate from the client in Message 4, the client sends its certificate chain, just as the server did in Message 3.

Note: Only a few Internet server applications ask for a certificate from the client.
Client key exchange - The client generates information used to create a key to use for symmetric encryption. For RSA, the client then encrypts this key information with the server's public key and sends it to the server.
Certificate verify - This message is sent when a client presents a certificate as above. Its purpose is to allow the server to complete the process of authenticating the client. When this message is used, the client sends information that it digitally signs using a cryptographic hash function. When the server decrypts this information with the client's public key, the server is able to authenticate the client.
Change cipher spec - The client sends a message telling the server to change to encrypted mode.
Finished - The client tells the server that it is ready for secure data communication to begin.
Change cipher spec - The server sends a message telling the client to change to encrypted mode.
Finished - The server tells the client that it is ready for secure data communication to begin. This is the end of the SSL handshake.
Encrypted data - The client and the server communicate using the symmetric encryption algorithm and the cryptographic hash function negotiated in Messages 1 and 2, and using the secret key that the client sent to the server in Message 8.
Close Messages - At the end of the connection, each side will send a close_notify message to inform the peer that the connection is closed.

分享到：

图片预览 | keytool使用笔记

2009-05-07 11:10
浏览 876
评论(0)
查看更多

评论

发表评论

您还没有登录,请您登录后再发表评论

相关推荐

linux下设置ftp及增加SSL服务.docx: ## Activate directory messages - messages given to remote users when they # go into a certain directory. dirmessage_enable=YES ## The target log file can be vsftpd_log_file or xferlog_file. # This ...

Bulletproof SSL and TLS，PDF , Ivan Ristic: Bulletproof SSL and TLS by Ivan Ristić Table of Contents Preface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ...

WebSphere MQ - Messages.pdf: 根据提供的文档信息，本文将对《WebSphere MQ - Messages.pdf》这一资料进行深入解析，并从中提炼出相关的IT知识点。此文档主要围绕WebSphere MQ的消息处理技术展开，详细介绍了消息查找、阅读方法以及不同系列下的...

javamail通过imap协议收取邮件(Exchange2007): Message[] messages = inbox.getMessages(); for (Message message : messages) { System.out.println("Subject: " + message.getSubject()); System.out.println("From: " + message.getFrom()[0]); // ... 其他...

很好的email接受邮件: 要使JavaMail支持SSL，首先需要添加Sun的SSL Provider到Java的安全提供者列表中。这可以通过调用`Security.addProvider()`方法实现，传入Sun的SSL Provider类的实例。此外，还需要设置一些属性来指定SSL相关的配置，...

JavaMail收发Gmail邮件: 1. **SSL加密**: 为了确保数据的安全传输，通常会使用SSL加密技术。 2. **Gmail的SMTP和POP3设置**: - SMTP服务器地址: smtp.gmail.com - SMTP端口: 465或587（使用SSL） - POP3服务器地址: pop.gmail.com - ...

anonymous-messages: 标题“anonymous-messages”暗示我们可能在讨论一个与匿名消息传递相关的项目或应用，可能是通过编程实现的。描述中没有提供额外的信息，所以我们主要依据标签“Java”来推测内容。在这个场景下，我们可以假设这是一...

Clever Internet .NET Suite 6.0.26.0: Clever Internet .NET Suite 6.0.26.0 .NET可用于VS2002/2003/2005,包括源代码 <br>Version ... <br> ...messages with international texts were decoded incorrectly (the character set field was ignored)...

如何清除linux日志: 　cat /dev/null > /var/log/messages 　cat /dev/null > /var/log/openwebmail.log 　cat /dev/null > /var/log/maillog 　cat /dev/null > /var/log/secure 　cat /dev/null > /var/log/httpd/error_log 　cat /...

Python私人邮件获取.rar: 这段代码使用了IMAP4_SSL，这是IMAP4的一个变体，它通过SSL/TLS协议提供安全连接，这对于处理敏感的邮件信息至关重要。`search`方法用于查找特定条件的邮件，这里是查找未读邮件。`fetch`方法用于获取邮件的完整内容...

Python 3.2: a much improved ssl module with support for SSL contexts and certificate hostname matching a sysconfig module to access configuration information additions to the shutil module, among them archive ...

python-3.2rc3: a much improved ssl module with support for SSL contexts and certificate hostname matching a sysconfig module to access configuration information additions to the shutil module, among them archive ...

Reference - TCL and iRules Supplement: - **Commands used to change SSL settings or invoke SSL actions**：列举了用于修改SSL设置或执行SSL相关操作的命令。 #### 十三、AES函数 - **AES functions**：这一节介绍了用于加密和解密的AES函数。 #### ...

Import gmail SMTP certificate to Websphere server: Failed messages: javax.mail.MessagingException: Exception reading response; ``` #### 解决方案步骤为了解决上述问题并成功导入Gmail证书至Websphere的信任存储中，请按照以下步骤操作： **步骤1：** 在...

sgcWebSockets v2.3 for D7-DXE3 Full Source: sgcWebSockets is a complete package providing access to WebSockets protocol, allowing to create WebSockets Servers, Intraweb Clients or WebSocket Clients...SSL/TLS support on Server and Client components

Javamail变成举例: Message[] messages = inbox.getMessages(); // 处理邮件... } ``` 以上就是使用 JavaMail 库通过 SMTP 发送邮件、通过 POP 接收邮件的基本过程，以及如何启用 SSL 安全连接。在实际项目中，还需要考虑错误处理、...

pop3 客户端 c#pop3 客户端开源的pop3 客户端 pop3: - 获取邮件信息：调用`Pop3Client.GetMessageCount`获取邮件总数，`Pop3Client.GetMessage`或`Pop3Client.GetMessages`获取邮件详情。 - 下载邮件：`Pop3Client.GetMessage`返回`MailMessage`对象，包含了邮件的...

命令行http服务器http-server.zip: s or --silent Suppress log messages from output--cors Enable CORS via the Access-Control-Allow-Origin header-o Open browser window after staring the server-c Set cache time (in seconds) for cache-...

javamail发送、接收邮件: 3. **检索邮件列表**：通过`Folder`类的`open()`和`getMessages()`方法打开邮件文件夹并获取邮件列表。 4. **下载邮件内容**：使用`Message`类的`getContent()`方法获取邮件内容，包括文本、附件等。 #### 实例...

Python-imboxPython库用于读IMAP邮箱并将邮件内容转换为机器可读的数据: recent_messages = imap_client.messages(since='15 Mar 2022') from_john = imap_client.messages(sender='john@example.com') ``` ### 邮件内容解析获取邮件后，imbox库会自动将邮件内容解析为Python字典，便于...

Global site tag (gtag.js) - Google Analytics