SSL VPN: SSL Tunnel Establishment

SSL VPN: SSL Tunnel Establishment

by Cyrus Lok on Thursday, January 7, 2010 at 1:16am
1. Host makes an outbound connection to TCP 443.

2. The router responds with a digital certificate which contains the public key that is digitally signed by Certificate Authority.

3. Host generates a shared-secret key and encrypts the key with the public key received from the router.

4. Host sends the shared-secret key to the router.

5. Router decrypts the shared-secret key with its private key.

6. Now the router and host got the symmetric key (the shared-secret key), and both will use this key to encrypt the SSL session.

SSL uses encryption algorithm with key lengths between 40 and 256 bits.

This entry was posted in Security. Bookmark the permalink.

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s