• Post Reply Bookmark Topic Watch Topic
  • New Topic
programming forums Java Mobile Certification Databases Caching Books Engineering Micro Controllers OS Languages Paradigms IDEs Build Tools Frameworks Application Servers Open Source This Site Careers Other Pie Elite all forums
this forum made possible by our volunteer staff, including ...
Marshals:
  • Campbell Ritchie
  • Jeanne Boyarsky
  • Ron McLeod
  • Paul Clapham
  • Liutauras Vilda
Sheriffs:
  • paul wheaton
  • Rob Spoor
  • Devaka Cooray
Saloon Keepers:
  • Stephan van Hulst
  • Tim Holloway
  • Carey Brown
  • Frits Walraven
  • Tim Moores
Bartenders:
  • Mikalai Zaikin

Does IE Use asymmetric or symmetric cyrptography

 
Ranch Hand
Posts: 249
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
Hello Friends
I understand asymmetric cyrptography in general terms. But does my browser (IE) use asymmetric cyrptography when you connect to a secured server using https?. Where is my private and public key present in the system for me to send the public key to server for encrypting the secured message which it will send to me using asymmetric cyrptography.

Regards
Farouk
 
Mohamed Farouk
Ranch Hand
Posts: 249
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
any replies plz
 
Ranch Hand
Posts: 65
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
In the typical case for browsers, HTTPS servers are expecting "anonymous" communication. In this case, the client doesn't have its own keypair. HTTPS defines a protocol for the two sides to communicate using a session-level keypair for the client, created on the fly as part of the communication handshake.

Only if the server is expecting "client authentication" does the client-side need to have its own keypair generated and certificate stored in the client keystore. This is something of a pain to set up; I haven't had to do it in a long time, and don't have the procedures for IE handy, but you can certainly find it out with a little Googleing.

At a high level, tho - the browser's certificate store is a list of who the client trusts, and the keystore is who the client is. If the server doesn't care who you are, you don't need the latter.

Does that help?
Grant
 
Mohamed Farouk
Ranch Hand
Posts: 249
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
Thanks Grant
I understand the technology thanks for your help

Regards
Farouk
 
reply
    Bookmark Topic Watch Topic
  • New Topic