Hello Bro..Even though i know all of this, i want to show you respect and thank you for great videos..I have seen tons of videos and describing material, but you keep it simple without loosing main point. So i can also recommend this! Regards from Serbia to All Worls :))

I just bought one of your books, then went looking for videos and here you are! Taking the test tomorrow. Wish me luck.... 

Buying a book on Amazon is actually the same analogy I used dozens of times in the classroom before I ever wrote the book. Buying something from Amazon is something that almost everyone studying for Security+ has done before so they can easily relate to the process. From a teaching and learning perspective, if I can help you build on knowledge you already have, it's a lot easier than teaching everything from scratch.

"Let's say I want to by a book on Amazon", sneaky sub-conscious advertising there :P

Get cheap SSL certificates. VeriSign/GeoTrust/RapidSSL/Thw­ate SSL certificates at lowest price.

mycheapssl(.)com

remove ( )

Thanks for the tutorials, much appreciated.

Yes, Anonandro. The server uses only 1 key pair (1 public key & 1 matching private key), with the certificate holding the public key & the server keeping the private key private. Client1 uses the server’s public key to encrypt the session key of 53 and only the server can decrypt this session key with the server’s private key. In your example, Client2 uses the server’s public key to encrypt the session key of SK and only the server can decrypt this session key with the server’s private key.

Thank you!

Moshenokoji, Congrats on a great score.

BrodJJ, That’s a great question “what does the client use to create the session key?” It’s much deeper than you’ll need for the Security+ exam but I understand curiousity. It’s actually created from several different pieces of data, but not the client’s private key since there’s no guarantee that the client has it’s own certificate with it’s own private key. If you want to dig deeper, check out Microsoft’s KB article 257591 (Search Google for KB 257591)

Hi,

Thank you for your nice videos.

The question I want to ask you is the following.

In your diagram, we have a server (Amazon) and a client ("client 1").

"Client 1" creates a session key: 53.

Suppose now that we have a second client ("client 2") connecting to the same server as "client 1".

I suppose "client 2" will create its own session key for example "SK".

Are there only still one public key (X$qi0) and one private key matching the public one (only one pair of keys)?

Best regards.

I took the cert today, 848 out of 900. 

thank you, you just saved me 8-10 points on my exam tomorrow :D

good explanation, not too "detailed", still i now know, how it's done. my biggest problem was, to accept, that the server can decrypt the message from the client with the servers private key ( still i dont't know how the hell the math works^^)

Hey Darril, when the client creates the session key, are they essentially taking their own private key, and encrypting it with the server's public key? Or do they have some other random key which is generated for the occasion, before being encrypted using the server's public key?

@BrodJJ @BrodJJ The session key is a random key generated by the client. The client doesn't need a key pair for this process. HTH, - Darril

Cool, so the session key can now be used in fast symmetric encryption (e.g. a stream cipher like RC4)... does the session key take different values during the various exchanges?