TLS with only server certificates

Asked Dec 03 '20 at 21:14

Active Dec 05 '20 at 10:05

Viewed 25 times

Up until now, I believed that TLS authentication and encryption can only be achieved when both the client and server exchange certificates with each other initially? Now I am seeing an example in Python code where an MQTT client is communicating with an MQTT broker, but only the MQTT broker provides a certificate.

How then does the encryption take place, if only the broker has a certificate? How are the session keys for encryption communicated in the first place securely? Thanks in advance.

edited Dec 05 '20 at 10:05

hardillb

asked Dec 03 '20 at 21:14

Engineer999

2

You are basically ask the basics of TLS. Therefore marked as duplicate of a question explaining the basics. – Steffen Ullrich Dec 03 '20 at 21:27
Indeed. You have mistaken TLS with client side certificates as the default, it’s not. – LvB Dec 05 '20 at 12:07

TLS with only server certificates

0 Answers0