Internet explorer pki default key pair

Posted on 2013-01-19
Medium Priority
Last Modified: 2013-01-24
I am trying to get my head around how IE negotiates https/SSL with Internet sites.

My understanding is they use asymetric PKI encryption to send each other a shared session key that both server and client use to encrypt and decrypt the communication.

But to send the session key they must authenticate each other.

My thinking is that the Internet web site public key (certificate) is sent to the client to use for encryption of this initial session key. (the client verifies that it is a valid cert first)

The client sends the ecrypted session key that only the website has the private key (certificate)to decrypt.

The client does not have to send a public key to the website?

Put another way is there a default public/private key pair in Internet Explorer for the client computer or is that not necessary?

Or does the client generate the shared session key and encrypt with the Internet website public cert and send to the website and then after that everything is symetric encryption with the session key?
Question by:Dragon0x40
1 Comment
LVL 51

Accepted Solution

ahoffmann earned 2000 total points
ID: 38797937

Featured Post

Free Tool: IP Lookup

Get more info about an IP address or domain name, such as organization, abuse contacts and geolocation.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

There are many Password Managers (PM) out there to choose from. PM's can help with your password habits and routines, but they should not be a crutch you rely on too heavily. I also have an article for company/enterprise PM's.
The recent Petya-like ransomware attack served a big blow to hundreds of banks, corporations and government offices The Acronis blog takes a closer look at this damaging worm to see what’s behind it – and offers up tips on how you can safeguard your…
This Micro Tutorial will demonstrate how nuggets on the Web are formatted by using Chrome Developer Tools. These tools would not only view the site's CSS but it can also modify it and save the CSS to use on your own site.
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

627 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question