Secure Socket Layer (SSL)

• Each party keeps session information

  • Session identifier (unique)
  • The peer’s X.503(v3) certificate
  • Compression method used to reduce volume of data
  • Cipher specification (parameters for cipher and MAC)
  • Master secret of 48 bits

• Connection information

  • Random data for the server & client
  • Server and client keys (used for encryption)
  • Server and client MAC key
  • Initialization vector for the cipher, if needed
  • Server and client sequence numbers

• Provides a set of supported cryptographic mechanisms that are setup during negotiation (handshake protocol)