SSL
- 1-way SSL (a.k.a. Server Authentication)
- Client confirms the server’s identity via the server’s provided certificate by verifying it with a CA (Certificate Authority).
- Then the Public Key contained in the received certificate is used along the Session Key to encrypt all sent/received messages.
- 2-way SSL (a.k.a. Client Authentication, Mutual Authentication)
- Server and Client confirm the other’s identity after each share their own public certificate by verifying it with a CA.
- Then the Public Key contained in the received certificate is used along the Session Key to encrypt all sent messages.
Keystore