To generate the key material, computekey_block = PRF(SecurityParameters.master_secret,"key expansion",SecurityParameters.`server_random ` +SecurityParameters.`client_random`);until enough output has been generated.Then, the key_block ispartitioned as follows:client_write_MAC_key[SecurityParameters.mac_key_length]server_write_MAC_key[SecurityParameters.mac_key_length]client_write_key[SecurityParameters.enc_key_length]server_write_key[SecurityParameters.enc_key_length]client_write_IV[SecurityParameters.fixed_iv_length]server_write_IV[SecurityParameters.fixed_iv_length]
The master secret is expanded into a sequence of secure bytes, which is then split to a client write MAC key, a server write MAC key, a client write encryption key, and a server write encryption key使用Diffie-Hellman算法的TLS握手细节
文章插图
Source: https://cipherstuff.wordPress/ target=_blank class=infotextkey>WordPress.com/拓展阅读
- Keyless
- Let’s Encrypt
- Session resume
- 证书Revoke
- TLS1.2规范:The Transport Layer Security (TLS) Protocol Version 1.2
- PKI规范:Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile
- 证书和数字签名:What is a Digital Signature?
- TLS Handshake:Keyless SSL: The Nitty Gritty Technical Details
推荐阅读
- 普洱生茶制作过程,普洱生茶和普洱熟茶减肥的原理不同
- |想找一份好工作,除了学历外,你知道还有什么是重要的吗?
- 小学语文教师教学工作计划 语文教学工作计划
- 试用期工作总结800字范文 实习期个人工作总结
- Tomcat-远程代码执行漏洞
- 公司生产部年度总结 生产部工作总结
- 小学语文教研组工作总结 小学语文教研总结
- 氢弹和原子弹的区别是什么?
- 窨花茶和熏花茶的区别是什么,花茶的窨制原理和程序
- 详解磁盘阵列RAID原理、种类及性能优缺点