Hi, everyone, I am new to the OpenSSL and I tried hard to understand SSL protocol and APIs. I have one question that bothers me.
When using openssl as a SSL Client, there is an option to load a client private key file. I don't understand why SSL client needs a private key? I thought, according to SSL, the Server uses asymmetric cryptographic (public key) to do the key exchange in handshake process; once handshake process is done, both server and client uses symmetric cryptographic for application data communications. So why client may need a private key? what is that key used for? I really wish somebody can help me on this. Thanks Appreciate in advance! John __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
