HTTPS (ssl) 的工作原理 [英] How exactly HTTPS (ssl) works
问题描述
我一直在阅读 HTTPS,试图弄清楚它究竟是如何工作的.对我来说这似乎没有意义,例如,我正在阅读这个
https://ssl.trustwave.com/support/support-how-ssl-works.php
注意它在页面上写了这个
<块引用>第 4 步:xyz.com 接下来将创建一个唯一的散列并使用两者对其进行加密客户的公钥和xyz.com 的私钥,然后发送返回给客户.
第 5 步:客户的浏览器将解密哈希.这个过程显示xyz.com 发送了哈希和只有客户可以阅读.
我不明白的是,黑客不能截取它发送回客户浏览器"的公钥,并能够解密客户可以解密的任何内容吗?
感谢您的回复
我不明白的是,黑客不能截取它发送回客户浏览器"的公钥,并能够解密客户可以解密的任何内容.
公钥/私钥加密基于使用素数的模运算.
这种非对称加密仅在 70 年代中期才被发现.它归功于 Diffie 和 Hellman,以及 Rivest、Shamir 和 Adleman.(不过,两者实际上都重新发现了英国特工已经知道的事情.)
Diffie-Hellman 上的维基百科页面有一个密钥交换的详细示例通过公共渠道.虽然它没有描述 SSL 本身,但它应该很容易理解为什么知道公钥不会透露消息的内容.
您可能还会发现这个简单的 RSA 示例很有趣.>
I have been reading on HTTPS, trying to figure out how exactly it works. To me it doesn't seem to make sense, for example, I was reading this
https://ssl.trustwave.com/support/support-how-ssl-works.php
And notice it says this in the page
Step 4: xyz.com will next create a unique hash and encrypt it using both the customer's public key and xyz.com's private key, and send this back to the client.
Step 5: Customer's browser will decrypt the hash. This process shows that the xyz.com sent the hash and only the customer is able to read it.
What I don't understand is, couldn't a hacker just intercept the public key it sends back to the "customer's browser", and be able to decrypt anything the customer can?
Thanks for any response
What I don't understand is, couldn't a hacker just intercept the public key it sends back to the "customer's browser", and be able to decrypt anything the customer can.
Public/private key encryption is based on modulo arithmetics using prime numbers.
Such asymmetric encryption was only discovered in the mid-1970s. It is credited to Diffie and Hellman, and to Rivest, Shamir and Adleman. (Though, both actually rediscovered things already known by the British secret services.)
The wikipedia page on Diffie-Hellman has a detailed example of a secret key exchange through a public channel. While it does not describe SSL itself, it should be handy to make sense of why knowing a public key doesn't reveal the contents of a message.
You might also find this simple RSA example interesting.
这篇关于HTTPS (ssl) 的工作原理的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
