Virginia State University Module 4 Analyzing a Certificate Discussion

1)Analyze the certificate for https://www.wellsfargo.com/

a)Who has signed the certificate, i.e., who is the CA? Is the CA trusted by your browser?

b)What is the certification authority certification path for the certificate?

c)Has the certificate expired?

d)Who is the issuer of the certificate?

e)What is the public key that’s being certified (just copy-paste it)?

f)What is the start and end date of the certificate?

g)What signature algorithm is being used?

h)What is the status of the certificate?

2)Analyze the certificate for https://www.rasmussen.edu/

a)Who has signed the certificate, i.e., who is the CA? Is the CA trusted by your browser?

b)What is the certification authority certification path for the certificate?

c)Has the certificate expired?

d)Who is the issuer of the certificate?

e)What is the public key that’s being certified (just copy-paste it)?

f)What is the start and end date of the certificate?

g)What signature algorithm is being used?

h)What is the status of the certificate?

3)Analyze the certificate for https://expired.badssl.com/

a)Who has signed the certificate, i.e., who is the CA? Is the CA trusted by your browser?

b)What is the certification authority certification path for the certificate?

c)Has the certificate expired?

d)Who is the issuer of the certificate?

e)What is the public key that’s being certified (just copy-paste it)?

f)What is the start and end date of the certificate?

g)What signature algorithm is being used?

h)What is the status of the certificate?

4)Analyze the certificate for https://sha1-intermediate.badssl.com/

a)Who has signed the certificate, i.e., who is the CA? Is the CA trusted by your browser?

b)What is the certification authority certification path for the certificate?

c)Has the certificate expired?

d)Who is the issuer of the certificate?

e)What is the public key that’s being certified (just copy-paste it)?

f)What is the start and end date of the certificate?

g)What signature algorithm is being used?

h)What is the status of the certificate?

5)Do a Wireshark trace for establishing a connection to https://google.com and answer the following questions. (NOTE: You may also want to refer to your Module 01 Project from Advanced Networking.)

a)Provide a screenshot from your trace to support your answers below (highlight specific parts in the screenshot).

b)Also, specify the web browser used and its version, and the TLS version used by the browser in the trace.

c)What number identifies the SSL Handshake content type?

d)What number identifies the SSL Application Data content type?

e)What number identifies the SSL Change Cipher Spec content type?

f)In your Wireshark trace, what all sets of messages are bundled together into single frames?

g)What is the cipher suite selected for this session?

h)What are the first 5 cipher suites suggested by the client machine?

i)What is Client Random Value included in the Client Hello message?

j)Is it possible for you to learn the pre-master secret from this trace? If yes, provide the pre-master secret. If not, explain your answer.

k)Establish another (fresh) session with https://google.com, (close the browser and start a new session from the same browser), and identify whether the answers to each of the above questions (a-h) change or not?