Knowledge is Power!

The Handshake

Ashwini Gaddagi

Nov 18, 2018 — 2 min read

In my previous post I explained what is HTTP and how is it helpful.

This post explains how it is achieved.

So far we know that symmetric and asymmetric key's role is played over when we connect to a site with SSL. This connection can happen with the help of Handshake.

What's that?

Let's say, My browser is trying to connect a website https://pizzaonline.dominos.co.in, and this website is hosted on some Server.

A two-way connection is established between my browser and Server.

But before that, they need to discuss how secure will be its communication. Based on the agreement following signs are displayed.

a. Exclamation mark: It's a warning!

b. Green padlock: It's secure, chillax...

This process...i.e. discussing and coming to an agreement is Handshake.

How does it work?

Here is where symmetric and asymmetric key comes in the picture.

Continuing the same example lets understand what's happening behind the scene.

My browser will send a list of SSL/TLS versions and encryption algorithms it has to the Server.
Server will check the list. Chooses the best one that benefits both. Sends reply with its certificate and Public key.
My browser will check if the Server's certificate is legal. Once my browser is sure, it will generate a Master key. Now it will blend Master key with server's Publick key...i.e. encryption is happening. It then sends encryption to Server..i.e. sending Master key securely.
Server will Decrypt it with its Private key.So far Asymmetric Algorithm is followed. None of my messages is encrypted. Only my browser and server have established a connection using an asymmetric algorithm. In short sharing Master key over the web using Asymmetric algorithm.
Now both have the same Master key. A unique key is generated, which can only be decrypted using this Master key, which only my browser and Server has it.Here Symmetric algorithm is followed.
Its time to test the connection. They both will test the connection, makes sure it is safe and both can decrypt successfully and securely.
When both are satisfied and have come to an agreement, the browser will set the status..in this case, green padlock.The above process happens in a fraction of seconds and we don't even realize it. It is fascinating.
It's a Green padlock! Which means I can order Extravaganza pizza :pSince my browser and server (where dominos website is hosted) have secured the connection, the entire session will be secure. what all credit card information is fed will be unknown to attackers.

Interfaces in Go: Simplified with a silly Analogy

This is how I finally made sense of interfaces in Go. There are countless resources out there, but fails to simplify how to grasp and implement interfaces effectively, atleast for me. While observing my niece one day (toddlers can be surprisingly inspiring!), an analogy clicked in my mind. Let me

Cardinality

Cardinality refers to the number of unique elements in a set or the number of distinct values in a data set. In the context of metrics and time-series data, cardinality refers to the number of unique combinations of metric name, label name, and label value that are present in a

How to configure k8s provider

k8s_terraform_metrics/templates/k8s_provider.tf at main · ashwiniag/k8s_terraform_metricsTerraform + K8s + Vicoriametrics + Kube-state-metrics + Prometheus operator - ashwiniag/k8s_terraform_metricsGitHubashwiniag

Monitor Server using victoriametrics and Grafana

Simple setup to monitor my machine using node_exporter: Exposes my machine metrics at http://localhost:9100/metrics vmagent: Scrapes the metrics exposed at /metrics at defined interval and sends it to victoriametrics victoriametrics: It is a single node set up, a tsdb storage. grafana: Visual representation of metrics used