原创 网站如何开启 TLS

TLS是什么?

RFC 8446: The Transport Layer Security (TLS) Protocol Version 1.3

TLS allows client/server applications to communicate over the Internet in a way that is designed to prevent eavesdropping, tampering, and message forgery.

Major Differences from TLS 1.2

Wireshark 抓包分析

TCP 三次握手

  • SYN SYN

  • SYN ACK SYN ACK

  • ACK ACK

TLS 协商

以 TLS 1.3 为例

  • Client Hello Client Hello

  • Server Hello, Change Cipher Spec, Encrypted Extensions Server Hello, Change Cipher Spec, Encrypted Extensions

  • Certificate, Certificate Verify, Finished Certificate, Certificate Verify, Finished

  • Change Cipher Spec, Finished Change Cipher Spec, Finished