The SSL/TLS handshake
The TLS Handshake Protocol is responsible for the authentication and key exchange necessary to establish or resume a secure session. Handshake Protocol manages the following:
Client and server will agree on cipher suite negotiation, random value exchange, and session creation/resumption
Client and server will arrive at the pre-master secret
Client and server will exchange their certificate to verify themselves with the client (optional)
Generating the master secret from the pre-master secret and exchanging it
Types of handshake message
There are ten types of message, as shown in the following table, and their corresponding Wireshark filters. This is a one-byte field in the Handshake Protocol:
|
Type |
Protocol |
Message |
Wireshark content type |
Wireshark filter |
|---|---|---|---|---|
|
0 |
Handshake |
Hello request |
|
|
|
1 |
Client Hello |
| ||
|
2 |
Server Hello |
| ||
|
11 |
Certificate |
|
