how can I get session symmetric key in Java? Is it hidden? (Looked for methods but there were none) That would make sense, however, I still need it. Is there a way to retrieve the symmetric key?
Share
Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
how can I get session symmetric key in Java? Is it hidden? (Looked for methods but there were none) That would make sense, however, I still need it. Is there a way to retrieve the symmetric key?
No. The SSL layer implementation is supposed to be transparent and internally takes care of encrypting the data below the application layer without any interference from the application layer. The symmetric key is generated per session and is to be shared only with the parties involved (in your case, the SSL layer at both ends of the socket connection) and nobody else. There is no justifiable need for the application layer to have access to the session key.