O'Reilly logo

Packet Analysis with Wireshark by Anish Nath

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

The SSL/TLS handshake

The TLS Handshake Protocol is responsible for the authentication and key exchange necessary to establish or resume a secure session. Handshake Protocol manages the following:

  • Client and server will agree on cipher suite negotiation, random value exchange, and session creation/resumption
  • Client and server will arrive at the pre-master secret
  • Client and server will exchange their certificate to verify themselves with the client (optional)
  • Generating the master secret from the pre-master secret and exchanging it

Types of handshake message

There are ten types of message, as shown in the following table, and their corresponding Wireshark filters. This is a one-byte field in the Handshake Protocol:

Type

Protocol

Message

Wireshark ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required