Great Job Sunny!! I can't believe how many videos I had to watch until someone actually explained this concept. Every other video was a complete waste of time. I really enjoyed the clear details and breakdown of the process.
Very detailed explained! Thank you for the video. On step 2, the server's digital certificate IS the server's public key, signed by the CA. It brings a lot of confusion to a lot of people not being told clearly that a certificate is just a public key whose ownership has been certified by a CA. So you can basically say that the certificate is what is used to encrypt the client key, once the CA signing it has been verified.
Comment deserves to be pinned to the top. I was wondering why a man in the middle couldn't just eavesdrop and replace the server public key with it's own. Now it makes sense
The speed is perfect for non native English speakers like me... and I think Mr.Sunny but in his mind this.. and this is why he always provide subtitles. Thank you Mr.Sunny.
Clear; Concise; Comprehensible! Well Done and Thank You for breaking SSL/TLS, high-level essentials down so amicably. Will check out your other Classroom topics. Keep it going!
It wasn't until I stumbled upon your channel have these things become all clear to me. I've been not able to understand how certificate, digital signature, and SSL, HTTPS and the likes works for years. Too many videos articles go into details with the missing pieces at the high-level or not explaining the how at all. Now that I understand it, I can see how horrible many of these materials are at explaining things. Thank you so much. Now I can read other detailed articles with much more clarity. Thanks again!
Thank you very much for explaining in a way that is easy to understand. Watched several videos before this and it was still confusing. Glad that I came across your video. Thank you for your contributions.
Thank you so much Sunny i am taking network security class and your videos are helping me to learn more and help me gets a good grade on my exams. Once again thanks a lot God bless you
I prefer to think of the public key as a portable safe and the private key as the key for the portable safe. Bob wants to send a message to Jane. Bob asks for Jane's portable safe. Jane gives Bob her portable safe but keeps the key. Bob puts the message in Jane's safe, shuts the door, then sends the portable safe back to Jane. Jane uses her key to open the safe and read Bob's message. The (private) key never leaves Jane's house, only the portable safe does. The safe is pretty heavy so you don't want to do it every time. So you only do it once at the start, to share a secret cipher to encrypt all subsequent messages.
@@5gun1 Thanks, glad it helped! i always thought the idea of a key unlocking another key was weird, so the idea of a key unlocking a safe just made more sense to me!
Very helpful and useful specially for people like me who wants to recall the concept of trust, digital certs., SSL/TLS handshake and PKI. Thank you so much Mr. Sunny.
It is good to point out that it is not necessarily needed to have a CA (Root of trust). You can implement a web of trust infrastructure and the SSL/TLS handshake will still work.
3:35 Clients don’t contact CA (ie. over network). Clients like web browsers comes with CA public keys bundled. They use those to verify the servers certificate.
Thank you sir for a great video - I am learning this and at the early days. I come from a network background so dealing with SSL/TLS is a new thing for me. All the best and thanks again. Jim
It's great explanation. Now a days in lot of places people are using mutual TLS. Can you please make a video on mutual TLS. What are the key differences with the normal TLS handshake. Lots of respect from India.
Are you sure the browser sends the shared secret key during handshake? I believe it send a pre-master key which will be used to generate the secret key on each side alone!
@@sunnyclassroom24 i have a doubt that based on pre master key both client and server creates master key. so will they encrypt handshake finish message with master key or the session key generated from master key?
Great Job Sunny!!
I can't believe how many videos I had to watch until someone actually explained this concept. Every other video was a complete waste of time. I really enjoyed the clear details and breakdown of the process.
Thank you very much for your nice words. I will try my best to keep up with your compliment.
Very detailed explained! Thank you for the video. On step 2, the server's digital certificate IS the server's public key, signed by the CA. It brings a lot of confusion to a lot of people not being told clearly that a certificate is just a public key whose ownership has been certified by a CA. So you can basically say that the certificate is what is used to encrypt the client key, once the CA signing it has been verified.
Comment deserves to be pinned to the top. I was wondering why a man in the middle couldn't just eavesdrop and replace the server public key with it's own. Now it makes sense
Yes Certifcate must be encrypted by Public key first. Otherwise anyone can steal the certificate and duplicate it.
I put your video on 1,25X speed, and it sounds even better!
I will speed it up: haha.
The speed is perfect for non native English speakers like me... and I think Mr.Sunny but in his mind this.. and this is why he always provide subtitles.
Thank you Mr.Sunny.
Haha
thank you
thanks
3 years later and these videos are still great learning and reference material. Thanks very much 👍🏾
Clear; Concise; Comprehensible!
Well Done and Thank You for breaking SSL/TLS, high-level essentials down so amicably. Will check out your other Classroom topics.
Keep it going!
thank you, nice animation which saves me a few hours. this is the best video i've seen about how ssl works.
AGREE
It wasn't until I stumbled upon your channel have these things become all clear to me. I've been not able to understand how certificate, digital signature, and SSL, HTTPS and the likes works for years. Too many videos articles go into details with the missing pieces at the high-level or not explaining the how at all. Now that I understand it, I can see how horrible many of these materials are at explaining things. Thank you so much. Now I can read other detailed articles with much more clarity. Thanks again!
Now that I know more about this topic. It seems a little too simplified for me. Computerphile gives more details.
this is the best video i've seen about how ssl works.
Done thanks
2:50 protocol example
Client encrypts a shared symmetric key with the server’s public key (after verifying the servers identity with a CA)
Very helpful! I was confused by the way my textbook worded this, but this explanation cleared it up for me!
Excellent explanation, in simple language. Thanks for taking the time to explain this concept.
That's one of the best explanations I've seen. Thank you and congrats!
Sunny, you've helped me with a lot of my cryptography assignments. thanks a ton!
I am glad my videos help you.
Thank you very much for explaining in a way that is easy to understand. Watched several videos before this and it was still confusing. Glad that I came across your video. Thank you for your contributions.
You're very welcome!
The best networking teacher ever. Thanks Sunny!
Thank you for your very synthesized videos, very very useful. Master class in 5 minutes about the basic concept of SSL you smashed it!
You are welcome! Thanks a lot for your compliment.
Thank you for making concept so crystal clear
Update: I wish I saw this years ago.
Best teacher. !
What a explanation! Really appreciate for expalning this complex topic in very simple way.
Thanks for the lovely delivery of the information.
Thanks Sunny, not just for helpful video but also for easy language.
Thank you so much Sunny i am taking network security class and your videos are helping me to learn more and help me gets a good grade on my exams. Once again thanks a lot God bless you
You just help me not fail my exam. Thank you very much
Glad to hear that!
@@sunnyclassroom24 Ohh I got 100% All thanks to you
Thank you for this detailed explained tutorial/video!
I love how you explain stuff and everything is to the point and the info is valuable. Thank you! I am subscribing definitely
Thank you very much!
I prefer to think of the public key as a portable safe and the private key as the key for the portable safe.
Bob wants to send a message to Jane. Bob asks for Jane's portable safe. Jane gives Bob her portable safe but keeps the key. Bob puts the message in Jane's safe, shuts the door, then sends the portable safe back to Jane. Jane uses her key to open the safe and read Bob's message.
The (private) key never leaves Jane's house, only the portable safe does. The safe is pretty heavy so you don't want to do it every time. So you only do it once at the start, to share a secret cipher to encrypt all subsequent messages.
Bro you single handedly made this make more sense to me than anyone could. Thank you so much.
@@5gun1 Thanks, glad it helped! i always thought the idea of a key unlocking another key was weird, so the idea of a key unlocking a safe just made more sense to me!
Probably the best explanation our there in my opinion, fantastic content - thanks!
You are welcome and thank you very much for your nice comment!
it is crazy that all this is done in a matter of seconds.
yes, even in a millisecond.
@@sunnyclassroom24 true! Also your videos are perfect for visual learners such as myself! Thank you for your hard work!
@@kristophskidoo324 You are welcome!
Very helpful and useful specially for people like me who wants to recall the concept of trust, digital certs., SSL/TLS handshake and PKI. Thank you so much Mr. Sunny.
At the end your videos can make my understanding 110%.. love from PAKISTAN 🇵🇰🇵🇰🇵🇰
Excellent video Sunny ! Simple and to the point !
Great tutorial my dude, despite of your accent. You speak slow and clear for better understanding.
I appreciate that!
Well done man. You're really a good teacher.
Thank you for your comments! Check out my other videos please!
This is too good, amazing how simple it is
Thank you so much Sunny. Your explanation on each topic is clear and concise.
Glad it was helpful!
you're excellent in teaching, thanks for the simplicity explanation
Glad it was helpful!
Thank you for your simple yet concise explanation Sir Sunny
Best explanation ever! Thank you very much!
Thank you for the video! I appreciate you taking your time and getting in depth about this! A lot of videos are too vague/general for my liking.
Simple and precise explanation. Good one
2020 and is still one of my favorite video, excelent explanation, thank you so much
Very nicely and simply explained the cryptic concept.. cudos...
thanks.
Great series of videos. They help immensely with my studies in electrical engineering. Thank You :-D
you are welcome!
Crisp and clear! Just what I was looking for! Thanks Sunny! It helped!
sunny ! u just revived all i was striving to recall.
Not sure why people are giving this video such likes. When it only touches the subject at very high level.
Thank you very much, it was very helpful, step by step explanation make the concept understandable.
V well illustrated, good job
you are the best in my leaning trip, thanks great video!
Great Job Sunny Yaar.....You save my at Least 2 Hours
Two thumps up !
It is good to point out that it is not necessarily needed to have a CA (Root of trust). You can implement a web of trust infrastructure and the SSL/TLS handshake will still work.
you are correct!
interesting, stumbled upon your comment and it had me thinking on the trust models and implications..
Thank you. This was very helpful and informative!
thank you for the crystal clear explanation !!!
Thanks Sunny! Very helpfull indeed!
Wow Sunny ! awesome crisp explanation :)
3:35 Clients don’t contact CA (ie. over network).
Clients like web browsers comes with CA public keys bundled. They use those to verify the servers certificate.
Not the root CA, but they do with a chain of CAs because of the chain of trusts.
This is a fabulous explanation!
Great video I you explained this in such a simple way and it makes it easy to follow along!
Excellent explanation sunny thank you for this 👍🏻
Very good explanation..
Nice background music feel like I’m in school.
Good work Sunny.
Can you please add video on mutual TLS and HTTP signatures
Thank you sir for a great video - I am learning this and at the early days. I come from a network background so dealing with SSL/TLS is a new thing for me. All the best and thanks again.
Jim
I am glad this video is helpful. You are welcome.
Thanks a lot.. this concept is cleared now. I can move to the next one now :p
Great explanation.
Glad it helped!
Great explanation! Looking forward to more helpful videos about network and security. Thanks!
Amaizing channel and Amaizing video thank you very much 🧡
Thanks a lot!
Excellent work! Thanks for this!
You are welcome!
Thank you So much Sunny! Your Videos are Great!!
Thanks a lot!
Good job man, good explanation
Very helpful and clear. Thank you.
Nice explanation !
Glad it helped!
Thanks a lot for this amazingly explanation Mr.Sunny , this video was very helpful 💜
you are welcome!
It's great explanation. Now a days in lot of places people are using mutual TLS. Can you please make a video on mutual TLS. What are the key differences with the normal TLS handshake.
Lots of respect from India.
Thanks a lot and I will do.
great content man! thanks!
My pleasure!
2:35 process
3:15 step 2
3:34 step 3
3:50 step 4
very thankfull for your video, they are so clearly!
Very accurate. Thank you
You are so welcome
Hi, Excellent video. Simple yet comprehensive. Keep up the good work.
awesome explanation, Thank you!
Thank you sir for this video. Could u please tell me if the shared secret key is a symmetric key for secure communication?
Great video on the topic. Thanks!
Glad you liked it!
2019 ur video is helpful TQ🙂👍
thanks.
Thanks for sharing such a wonderful video..and very helpful..
You're the best sunny
thanks a lot.
Why would the browser ever talk to the CA? Doesn't it have a list of trusted CAs and their respective public keys locally?
It really helped! Thanks Guru Ji
Well done Mr.Sunny
Ultimate explanation 👏👏
Thank you very much for sharing such a valuable information !! appreciate your efforts Sir !!
You are welcome!
thank you for this video!
You're so welcome!
Greatly done Sunny...!!!
Are you sure the browser sends the shared secret key during handshake? I believe it send a pre-master key which will be used to generate the secret key on each side alone!
technically you are correct. I try to be simplify a bit about the whole process.
@@sunnyclassroom24 i have a doubt that based on pre master key both client and server creates master key. so will they encrypt handshake finish message with master key or the session key generated from master key?
Good explanation. Thank you.
Thank you so much for easy understanding
Very Nice Explanation
fantastic video, thanks very much
well explained, thanks!
Thanks.
Isn't server public key part of the certificate? at 3:31 it's listed as a separate item on the list.
Thank you Sir for so easy explanation.
You are welcome.
Thanks for the great explanation
Hi Sunny. Hope you had a good Christmas!
One small correction the secret key for symmetric encryption is encrypted using clients public key and not servers public key