问题描述

这是我对SSL通信的理解。浏览器从安全网站的Web服务器获取公钥。客户端和服务器基于公钥/私钥建立会话密钥，然后在SSL会话期间通过对称算法继续通信。

This is what I understand for SSL communication. The browser gets public key from the web server of the secured website. The client and server establish session key based on public/private keys and then continue communication through symmetric algorithm during the SSL session.

我的问题：

生成会话密钥后，它存储在服务器端的哪个位置？它存储在Web服务器内存中吗？它是否以加密形式存储？

After session key is generated, where does it stored in server side? Is it stored in web server memory? And is it stored as encrypted?

推荐答案

嗯，它获取整个证书，其中包含公钥，它还有很多其他的东西，它验证服务器拥有该证书，因此拥有该公钥。

Well, it gets the entire certificate, which contains the public key, and it gets a lot of other things too, that authenticate that the server owns that certificate, and therefore owns that public key.

不正确。他们根据与公钥或私钥无关的共享秘密协商会话密钥。公钥可用于加密客户端和服务器之间的其中一个秘密，但这是一个不同的声明。

Incorrect. They negotiate a session key based on shared secrets that don't have anything to do with the public or private keys. The public key may be used to encrypt one of those secrets between client and server, but that's a different statement.

正确。

生成会话密钥后，它存储在服务器端的哪个位置？它是存储在Web服务器内存中吗？

After session key is generated, where does it stored in server side? Is it stored in web server memory?

当然。

否。

这篇关于SSL对称密钥存储在哪里？的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持！