To this point (ClientHello and ServerHello). We then calculate the SHA384 hash of all handshake messages Public key by the server's private key using the curve25519()Īlgorithm. Result of the key exchange that allows the client and server
08 05 - assigned value for RSA-PSS-RSAE-SHA384.08 04 - assigned value for RSA-PSS-RSAE-SHA256.08 0b - assigned value for RSA-PSS-PSS-SHA512.
08 0a - assigned value for RSA-PSS-PSS-SHA384.08 09 - assigned value for RSA-PSS-PSS-SHA256.06 03 - assigned value for ECDSA-SECP521r1-SHA512.05 03 - assigned value for ECDSA-SECP384r1-SHA384.04 03 - assigned value for ECDSA-SECP256r1-SHA256.00 1c - 0x1C (28) bytes of data are in the following list of algorithms.00 1e - 0x1E (30) bytes of "Signature Algorithms" extension data follows.00 0d - assigned value for extension "Signature Algorithms".Influence the certificate that the server 01 04 - assigned value for the curve "ffdhe8192".01 03 - assigned value for the curve "ffdhe6144".01 02 - assigned value for the curve "ffdhe4096".01 01 - assigned value for the curve "ffdhe3072".01 00 - assigned value for the curve "ffdhe2048".00 18 - assigned value for the curve "secp384r1".00 19 - assigned value for the curve "secp521r1".00 1e - assigned value for the curve "x448".00 17 - assigned value for the curve "secp256r1".00 1d - assigned value for the curve "x25519".00 14 - 0x14 (20) bytes of data are in the curves list.00 16 - 0x16 (22) bytes of "supported group" extension data follows.00 0a - assigned value for extension "supported groups".This list is presented in descending order The client has indicated that it supportsĮlliptic curve (EC) cryptography for ten curve types. The public key calculation can be confirmed at the command line: The private key is chosen by selecting an integer betweenĠ and 2 256-1. Where two parties can agree on the same number withoutĪn eavesdropper being able to tell what the number is.Īn explanation of the key exchange can be found on myīut doesn't need to be understood in depth for the rest The client begins by generating a private/public keypairįor key exchange.