Results 1 to 4 of 4
LinkBack URL
About LinkBacks- 08-01-2013, 09:04 PM #1
Member
- Join Date
- Aug 2013
- Posts
- 2
- Rep Power
- 0
How are clients able to decrypt ssl packets
Hi. I'm pretty new to network programming and I have a question. This is not really Java-specific, but I thought I'd ask here.
When a client, say a browser, requests a secure socket from a server (e.g. you just visit some page with https), the transmissions are encrypted. SSL uses public/private key for encrypting and decrypting the data.
What I don't understand is how the client is able to do anything with the data it receives from the server. How is the client able to decrypt the data the server sends it and do something useful (e.g. render a web page that was requested with https)?
- 08-01-2013, 09:31 PM #2
Just a guy
- Join Date
- Jun 2013
- Location
- Netherlands
- Posts
- 5,114
- Rep Power
- 11
Re: How are clients able to decrypt ssl packets
I don't get the question. SSL is an open algorithm with dozens of implementations to do the encryption and decryption. What's so mysterious about that? Pick your favorite library (which the designers of the browsers have also done) and utilize it to do the encryption/decryption. The end result of decryption is the data that you can use, such as the HTML which can be rendered by the browser.
Transport Layer Security - Wikipedia, the free encyclopedia"Syntactic sugar causes cancer of the semicolon." -- Alan Perlis
- 08-01-2013, 11:07 PM #3
Member
- Join Date
- Aug 2013
- Posts
- 2
- Rep Power
- 0
Re: How are clients able to decrypt ssl packets
I don't really get the question either. I don't know exactly how SSL works. If anyone can take SSL-encrypted data and decrypt it using an open algorithm, then what's the point of using it? I thought there was some kind of public/private key pair that was needed to do the encryption/decryption.
Are there any ready-made packages that let you feed it an SSL-encrypted string of bytes, pick an implementation (can you give me some examples of implementations?), and it spits out the decrypted string?
What I'd like to do is to catch the packets sent from my application to the server (and those from the server to my application) and decrypt them so that I can debug the application.
I figure there's gotta be a way, because browsers can decrypt page data that was sent to them from servers via https.Last edited by Pacopag; 08-01-2013 at 11:14 PM.
- 08-02-2013, 08:48 AM #4
Just a guy
- Join Date
- Jun 2013
- Location
- Netherlands
- Posts
- 5,114
- Rep Power
- 11
Re: How are clients able to decrypt ssl packets
Perhaps you're just mistaken?If anyone can take SSL-encrypted data and decrypt it using an open algorithm, then what's the point of using it?
Perhaps there is? I never said there weren't any.I thought there was some kind of public/private key pair that was needed to do the encryption/decryption.
Apparently the wiki was not enough or you did not bother to read it, so lets find a simpler one for you.
Google: "how does SSL work"
result: certificates - How does SSL work? - IT Security Stack Exchange
Please, read it and be informed in stead of guessing."Syntactic sugar causes cancer of the semicolon." -- Alan Perlis
Reply With QuoteSimilar Threads
-
How to decrypt SSL?
By Sergio in forum Advanced JavaReplies: 3Last Post: 02-18-2016, 05:42 PM -
making packets of video and then video of packets
By Sardar Najam in forum NetworkingReplies: 0Last Post: 03-05-2013, 11:43 PM -
need to decrypt...HELP PLEASE!!!thanks!
By dmerunong in forum New To JavaReplies: 3Last Post: 09-07-2011, 02:56 PM -
Encrypt and decrypt SMS
By ZeCute in forum CLDC and MIDPReplies: 8Last Post: 06-13-2010, 05:01 AM -
Ideas to decrypt this ?
By ketku in forum Advanced JavaReplies: 0Last Post: 11-16-2009, 10:52 AM
Bookmarks