https using wireshark

Discussion in 'Computer Security' started by brindalv, Dec 21, 2010.

  1. brindalv


    Dec 21, 2010
    Likes Received:
    I'm trying to understand the working of https. i started a packet capture(ssl) on wireshark and tried logging on to gmail and other sites which use https.

    In the traces, im not able to see the certificate sent by the server to my computer. the client hello message is immediately followed by the change cipher spec message from the server.
    the cipher spec = TLS_DHE_RSA_WITH_AES_256_CBC_SHA.

    i read somewhere that for certain ciphers, server certificate is optional :(
    please help where this is negotiated/ if this is a bug.

    brindalv, Dec 21, 2010
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.