1. When a client browser sends a re

1. When a client browser sends a request message to a server's seoure Web site the server sends a hello request to the browser (client), The browser responds with a client hello. The exchange of these greetings, or the hand shake, allows the two computers to determine the compression and encryp tion standards that they both support.
2. Next, the browser asks the server for a digital certificate as a proof of iden tity. In response, the server sends to the browser a certificate signed by a recognized certification authority.
3. The browser checks the serial number and certificate fingerprint on the server certificate against the public key of the CA stored within the browser. Once the CA's public key is verified, the endorsement is verified. That action authenticates the Web server. The browser responds by sending its client certificate and an encrypted private session key to be used. When the server receives this information, it initiates the session, which uses the private key now shared between the browser and the Web server
4. With the session established as secure, request messages from the browser are accepted by the Web server, which sends the necessary responses In this secure session, the browser user can make purchases, pay bills, or trade securities without worrying about threats to the security of the information passing between the two computers