Re: Is SSL/TSL really secure?

From: Volker Birk <bumens@xxxxxxxxxxx>
Date: 28 Mar 2006 10:11:25 +0200

tomodachigai@xxxxxxxxx wrote:
[SSL and TLS]

When you ping a ip, it connects to several other ips before it reaches
it's destination. So, isn't it possible for those "middle-man"
computers to record the private and public keys as they pass from my
computer to the "secure" web site.

It is not possible, because private keys never are being sent, and
public keys are public anyways ;-)

sorry if the question is dumb, just hoped someone could clear it up for
me.

What you seem to miss is the understanding of the idea of asymmetric
cryptography.

It works like this:

You have a key pair K1, K2. What you're encrypting with K1 cannot be
decrypted with K1 any more. It only can decrypted with K2. And vice versa,
what is encrypted with K2, can only decrypted with K1.

So both partners have such a keypair, say Alice has K1, K2 and Bob has
L1, L2.

Now Alice keeps K1 strictly secret - it's her "private key". And Bob does
so with L1 - it's his "private" key. The other keys they make public.

Now Alice sends K2 to Bob. And Bob sends L2 to Alice. It does not matter
if somebody listens.

When Alice now is wanting to send a message C to Bob, she encrypts the
message with her own secret K1. So when Bob is decrypting, he knows, that
this message came from Alice for sure, because this message can be decrypted
with K2, Alice's public key. And additionally, Alice encrypts the message
with the public key of Bob, L2. So this message can only decrypted by Bob
himself - because he is the only one, who has the matching private key L1.

So Alice encrypts the message C like this:

X = L2(K1(C)).

Only Bob can decrypt it, because only he has L1 to decrypt:

X' = L1(L2(K1(C))) = K1(C).

And Bob immediately can check, if this really is from Alice. Only, if Alice's
public key matches, then this will be a sensible message:

X'' = K2(K1(C)) = C.

This is the concept of assymetric cryptography. SSL further uses the concept
of cryptographic hashes to secure, that C really is a correct message. And,
when key exchange using such concepts is done, then the only data which is
sent usually is a key for a simple symmetric block cypher, which is used
afterwards instead of such asymmetric cryptography. The reason is speed -
this computes much faster.

Yours,
VB.
--
At first there was the word. And the word was Content-type: text/plain
.

Follow-Ups:
- Re: Is SSL/TSL really secure?
  - From: Ludovic Joly

References:
- Is SSL/TSL really secure?
  - From: tomodachigai

Prev by Date: Re: How do people write keygens?
Next by Date: Re: Is SSL/TSL really secure?
Previous by thread: Is SSL/TSL really secure?
Next by thread: Re: Is SSL/TSL really secure?
Index(es):
- Date
- Thread

Relevant Pages

Re: Simple authenticated channel
... protocols (in this case, I assume Bob uses a DH keypair), followed by ... It is assumed Alice already has an authetic copy of Bob's public key. ... The attacker therefore does not hold k, ...
(sci.crypt)
Re: PGP Lame question
... i think that given Q and Bob's public key, ... Q can be linked as encrypted to Bob ... can verify that Alice signed something somehow connected to Bob? ... Alice encrypts M with R and gets an output, ...
(sci.crypt)
Re: Encryption question
... will be able to encrypt and decrypt the same messange. ... it with alice private key.... ... >>messange with his public nor with is private. ... she will encrypt it with his public key. ...
(Security-Basics)
Practical improvement of DH-ElGamal scheme
... Improving DH-ElGamal public key encryption scheme can be done in ... For person Alice: ... Linking between 2 persons (Alice and Bob): ... Attacking this encryption scheme: ...
(sci.crypt.research)
Re: GPG
... In a practical sense, only Bob may decrypt ... Alice on the way to Bob and prevent it from reaching Bob. ... Alice may encrypt the message with Bob's public key, ... the others) before issuing their certificates. ...
(comp.os.linux.security)