My book suggested the following protocol to replace SSL:
A lot of the terms are familiar to me from the Original SSL, like
ChangeCipherSpec message which means from now on the messages I send will be encrypted. and
FinishedClient: which is the first message to be encrypted.
But few things aren’t clear for me:
Diffi-Hilman is the short term key here, what about the long term?
pre shared secretbut what is
pre master secret, who generates it and what’s used for (I don’t see the server using it anywhere)?
after stage 5, How are the messages between the client and server passed? what’s the encoding function, what’s the key?