• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 509
  • Last Modified:

Internet explorer pki default key pair

I am trying to get my head around how IE negotiates https/SSL with Internet sites.

My understanding is they use asymetric PKI encryption to send each other a shared session key that both server and client use to encrypt and decrypt the communication.

But to send the session key they must authenticate each other.

My thinking is that the Internet web site public key (certificate) is sent to the client to use for encryption of this initial session key. (the client verifies that it is a valid cert first)

The client sends the ecrypted session key that only the website has the private key (certificate)to decrypt.

The client does not have to send a public key to the website?

Put another way is there a default public/private key pair in Internet Explorer for the client computer or is that not necessary?

Or does the client generate the shared session key and encrypt with the Internet website public cert and send to the website and then after that everything is symetric encryption with the session key?
0
Dragon0x40
Asked:
Dragon0x40
1 Solution

Featured Post

Automating Your MSP Business

The road to profitability.
Delivering superior services is key to ensuring customer satisfaction and the consequent long-term relationships that enable MSPs to lock in predictable, recurring revenue. What's the best way to deliver superior service? One word: automation.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now