SSL HandShake on Java Client

Question

SSL HandShake on Java Client

I have very serious doubts about SSL HandShake. Suppose we have an S server that uses self-signed certificates. I am writing a C Java client that connects to S. When C connects to S, C receives certificates from S and stores them in its trust store, and the rest of the message continues. After a while, I use the same C to connect to S, so S will send certificates to C again, or C will use the certificates already stored in truststore. I am not good at SSL and the basic implementation of Truststore functions in Java.

Will S send C certificates unchanged, does C have certificates in its trust store? I believe that if I have certificates in C trust centers, then S and C will not ask for certificates when reconnecting? Is my assumption correct?

Is the process the same for self-signed certificates and CA certificates?

Thanks in advance.

+5

java ssl ssl-certificate

Jkv Apr 23 '10 at 13:21

source share

1 answer

DaveJohnston · Accepted Answer · 2010-04-23T14:58:37+0000

This is my understanding of SSL, I am not an expert in this matter, but in the absence of other answers, I hope I can at least give you something to think about.

, - , , , , , . , , javax.net.ssl.truststore( "///" );

, , . , , , ( , , , , ). , , , .

, , . , , , , , .

, : SSL- (, ). SSL- , , .

, , ( , , , ).

, - .

SSL HandShake on Java Client

More articles: