hadf
Reputation: 282
Is received data encrypted over https?
I have a question about security.
When I visit a website over HTTPS, data sent from the browser is encrypted. But what about data received from the server?
For example, if visited pages display confidential information, how can this information be encrypted on server side and decrypted on client side, given that the browser doesn't know the private SSL key?
Upvotes: 1
Views: 187
Answers (1)
F. Stephen Q
Reputation: 4306
When you start an https session, your browser and the server negotiate a session key. This key is what is used to encrypt data that you send to the server, and data the server sends to you. The server's public key is only used to authenticate the server and initiate the handshake.
Upvotes: 2
Related Questions
- Are HTTPS URLs encrypted?
- Are HTTPS headers encrypted?
- Is GET data also encrypted in HTTPS?
- HTTPS - Is Web Request and response are got Encrypted?
- How it HTTPS secure? Can't anyone decrypt the responses?
- Does the request get encrypted when posting to HTTPS from HTTP
- Which part of the communication is encrypted under a HTTPs communication?
- Is data sent from the server also encrypted in HTTPS/SSL?
- Is data is encrypted (128 bit encryption) in SSL layer?
- HTTPS Response body - Is it secured?