hey , i am a novice when it comes to ssl. I need to know if my understanding of the working of ssl in tha case of server authentication is right. To authenticate a server. 1.I need to have the public key of the Certifing authority(ex.verisign) registered my client browser. 2.When i make a request to a SSL enabled server i get a certificate with public key of the server and other info of the server signed using the Certifing Authority's private key. 3.If i am able to decrypt the signature of the Certifing Authority's signature ,I am assured that the server that i am going to access is ceritfied. 4. I then go ahead talking to server using the server's public key i get Is my understanding right? If no ,please give me any pointers that will get me on the right track. don _________________________________________________________ For Rs. 2,000,000 worth of Aptech scholarships click below http://events.rediff.com/aptechsch/scholarship.htm ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
