2

I find it really hard to find online resources which go through the details of the following aspects of SSL work.

Is a certificate of a website signed with the public key of a Certificate Authority, or does the browser actually contact the Certificate Authority to verify the certificate...

Any good and clear technical sources for info are greatly appreciated.

Improve this question

1 Answer 1

Reset to default
3

http://www.moserware.com/2009/06/first-few-milliseconds-of-https.html decribes it en detail.

Improve this answer
4
  • in two words: yeah! finally! To bad it doesn't have references, but other than that, it confirms what I thought, so I trust it. Great article.
    – ufotds
    Commented Oct 10, 2010 at 19:50
  • ps: Im going to turn of my wireshark now, because the work has been done.
    – ufotds
    Commented Oct 10, 2010 at 19:50
  • 1
    for further information you can read the corresponding RFCs 5246, etc. But in my opinion most RFCs are dry to read.
    – oldwired
    Commented Oct 10, 2010 at 19:55
  • I have to take my words back btw, the article does have references, but not as foothnotes, just as links in the text. I did look at that rfc, but it is particularly dry and I did not manage to extract the information I was looking for in an efficient manner.
    – ufotds
    Commented Oct 10, 2010 at 20:37

Not the answer you're looking for? Browse other questions tagged .