Reputation: 3
How can a client use prestored server's certificate to do SSL handshake?
I know that during normal SSL handshake, the client receives the server's certificate and verifies it, then uses the server's public key to encrypt the session key.
I want to write a SSL client in C language on Linux. During SSL handshake, it doesn't have to wait for the server's certificate and it sends the session key encrypted with the server's public key that have already been downloaded previously.
I am learning how to use OpenSSL, I only need the do-handshake part here.
Thanks for attention. Why to do this? The ISP or gateway can censor the certificate and block the connection according to names in the certificate.
Upvotes: 0
Views: 162
Answers (1)
Reputation: 652
Unfortunately, this is impossible. As part of the SSL (or TLS) protocol, the server will always send its certificate.
If you would like to bypass ISP censorship, I recommend using a VPN or Tor.
Upvotes: 1
Related Questions
- How to verify the client certificate during the tls handshake
- How can the SSL client validate the server's certificate?
- Make client send certificate to server during authentication
- OpenSSL presenting server cert to client with certificate authority?
- SSL handshake with intermediate certificate
- Authenticate server (peer) with SSL
- Send client certificate to Server in Tcl
- Experimenting with SSL connections
- How does SSL handshake/protocol work if client already has server certificate?
- OpenSSL establish connection between client and server