HTTPS uses Asymmetric or Symmetric encryption?

user5174517 picture user5174517 · Jun 13, 2016 · Viewed 7.8k times · Source

I have searched all this morning but I've found websites where it is said that data is sent through an asymmetric encryption using the TLS protocol Then I found the contrary Please can you tell me which is true? Thanks And does anyone know a guide where it is explained step by step the handshake of tls protocol over https?

Answer

micker picture micker · Jun 13, 2016

The best answer is that it does both. TLS uses asymmetric encryption to first establish the identity of one or both parties. Secondly, it uses asymmetric encryption to exchange a key to a symmetric cipher. So asymmetric is only used during the initial setup of communication.

Symmetric encryption which is used through the rest is faster and more efficient with large amounts of data transfer. The keys are smaller which is generally why it's faster, but its algorithm is also easier to process.

As far as a guide goes, a simple Google search will give you plenty. The one I found from IBM looks decent. They removed some of the excess detail to make it easier to understand.