What is a TLS/SSL certificate, and how does it work?

1 Like

The 4-step picture in the article isn’t the current way TLS works.

Nowadays, the server’s public key is used for authenticity checks only. For agreeing keys, both parties use ephemeral Diffie-Hellman. DHE provides perfect forward secrecy (PFS). The old scheme shown in their picture doesn’t provide PFS.