SSL stands for Secure Sockets Layer, though IETF has renamed it TLS (Transport Layer Security). TLS is documented in RFC 2246 and identifies itself in the protocol version field as SSL 3.1. When initiating a new SSL/TLS session, the client receives the server SSL certificate and validates it. What does the client use the certificate for after validating it?
A.
The server creates a separate session key and sends it to the client. The client has to decrypt the session key using the server public key from the certificate.
B.
The client creates a separate session key and encrypts it with the server public key from the certificate before sending it to the server.
C.
Nothing, the client and server switch to symmetric encryption using IKE to exchange keys.
D.
The client generates a random string, encrypts it with the server public key from the certificate, and sends it to the server. Both the client and server derive the session key from the random data sent by the client.