【发布时间】:2020-07-24 02:05:00
【问题描述】:
我正在使用ECC证书来观察TLS是如何工作的,谁能帮我区分ECDH-ECDSA-AES128-SHA256和ECDHE-ECDSA-AES128-SHA256之间的区别。
当使用ECDHE-ECDSA-AES128-SHA256时,客户端和服务器工作正常。
New, TLSv1/SSLv3, Cipher is ECDHE-ECDSA-AES128-SHA256
Server public key is 256 bit
Secure Renegotiation IS supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
SSL-Session:
Protocol : TLSv1.2
Cipher : ECDHE-ECDSA-AES128-SHA256
使用 ECDH-ECDSA-AES128-SHA256 时,SERVER_HELLO 失败:
140344027961248:error:14077410:SSL routines:SSL23_GET_SERVER_HELLO:sslv3 alert handshake failure:s23_clnt.c:769:
【问题讨论】:
标签: ssl openssl ssl-certificate tls1.2