SENA PS210W User Manual
Page 59
59
be encrypted with the session key. It then sends a separate (encrypted) message indicating
that the server portion of the handshake is finished.
10. The SSL handshake is now complete, and the SSL session has begun. The client and the
server use the session keys to encrypt and decrypt the data they send to each other and to
validate its integrity.
Client
Client Hello
Certificate
ClientKeyExchange
CertificateVerify
Application Data
ChangeCiperSpec
Server Hello
Certificate
ServerKeyExchange
CertificateRequest
ServerHelloDone
ChangeCiperSpec
Application Data
Handshake
Finished
Plain
Text
Cipher
Text
Server
Figure 4-11 Typical SSL Handshake Process
The Pro Series can act as a SSL server or as a SSL client depending on status of TCP mode. If TCP
connection with SSL is initiated from remote host first, Pro Series acts as a SSL server during the SSL
handshake process. On the contrary, if TCP connection with SSL is initiated from serial port of Pro
Series first, Pro Series acts as a SSL client during the SSL handshake process.
Client Authentication by certificate (server mode only)
If user selects Client Authentication by certificate option as “Enable”, Pro Series will request the client’s
certificate while in SSL handshaking process (Step 2). On the contrary, if user selects Client
Authentication by certificate option as “Disable”, Pro Series does not request the client’s certificate
while in SSL handshaking process (Step 2).