Ans :
1. SSL client attempts to connect to a SSL server (website secured with SSL)
by sending a client hello message.
- Web server responds with a server hello.
- Client requests web server to prove its identity.
- Web server sends a copy of its SSL certificate to authenticate its identity to
client. - Client verifies it. Accordingly, it sends a message to the server.
- If the server requires client authentication, it asks for “client certificate
request”. - Then the client sends its certificate.
- SSL server verifies the signature on the client certificate.
- Client sends a digitally signed acknowledgement to start sharing.
- Server sends a digitally signed acknowledgement to start sharing.
- The data in encrypted form is shared between the server and browser and a
secured session starts that protects message privacy, integrity and security.
A secure session starts between server and client enabling data to be
transmitted in encrypted form, thus ensuring privacy, integrity and security
