Wireshark

  • Riverbed Technology
  • WinPcap
the world's foremost network protocol analyzer
  • Wireshark
    • About
    • Download
    • Blog
  • Get Help
    • Ask a Question
    • FAQs
    • Documentation
    • Mailing Lists
    • Online Tools
    • Wiki
    • Bug Tracker
  • Develop
    • Get Involved
    • Developer's Guide
    • Browse the Code
    • Latest Builds

Wireshark-users: [Wireshark-users] SSL Decryption

Date Index Thread Index Other Months All Mailing Lists
Date Prev Date Next Thread Prev Thread Next


From: Derek Shinaberry <wireshark@xxxxxxxxxxxxxxxxxxxxxxxx>
Date: Fri, 10 Aug 2007 14:07:19 +0100

Can someone help me understand why you must have the server's private key in order to be able to decrypt the session between the client and the server? It seems to me that if the server and client can conduct the session without the client ever knowing the server's private key, then a capture of the session on the client's side ought to be able to decrypt the session using just what is in the SSL handshake exchange. What don't I understand about the process that precludes this behavior? 

Thanks,
Derek
  • Follow-Ups:
    • Re: [Wireshark-users] SSL Decryption
      • From: Luis EG Ontanon
    • Re: [Wireshark-users] SSL Decryption
      • From: Jeff Morriss
    • Re: [Wireshark-users] SSL Decryption
      • From: Kukosa, Tomas
  • Prev by Date: [Wireshark-users] MATE config syntax
  • Next by Date: Re: [Wireshark-users] SSL Decryption
  • Previous by thread: Re: [Wireshark-users] SSL decryption
  • Next by thread: Re: [Wireshark-users] SSL Decryption
  • Index(es):
    • Date
    • Thread

Wireshark and the "fin" logo are registered trademarks of the Wireshark Foundation