Client
Client
Random #
Server
Random #
Server
Public Key
Cryptographic
Key Generation:
PreMasterSecret
Encryption
E(PreMasterSecret)
Figure 26 - Keying Material
The client generates what is called a “pre_master_secret” using the random numbers as well as a function called the key derivation function. This is encrypted with the server’s public key. Only a server with knowledge of the private key would be able to decrypt it. The ability to decrypt the pre_master_secret proves that the server is in possession of the private key – the final proof for the server’s identity.
24