In addition to this online demo, we provide many SharkSSL source code examples you can download, compile, and run.
The screenshot image below shows a browser connecting using TLS 1.2. The TLS connection and certificate information can be viewed by clicking the green padlock in the browser bar. SharkSSL Supports SSL V3.0, TLS V1.0, TLS V1.1, and TLS V1.2.
The screenshot image to the right shows that the symmetric encryption uses 128 bits Advanced Encryption Standard (AES) with Galois/Counter Mode (GCM), and the connection was established by using Elliptic curve Diffie–Hellman Ephemeral (ECDHE). Ephemeral means that the asymmetric encryption scheme connected using Perfect Forward Secrecy.
Perfect Forward Secrecy (PFS) ensures that a session key, derived from a set of long-term public and private keys, will not be compromised should one of the (long-term) private keys (our RSA certificate's private key) be compromised in the future.
If you look in your browser's address bar, you will see the connection is secure and that your browser displays a green bar after confirming the server's trusted EV certificate.
In addition to providing encryption, SSL also provides trust management -- i.e. it tells you if you can trust the peer side you are connected to. The HTTP client (in your case, the browser) trusts the certificate provided by our SharkSSL enabled server. The trust is established when the server's certificate is signed by a trusted certificate authority, i.e. signed by an authority whose root certificate is stored in your browser's certificate store.
Having a valid certificate is not sufficient for a browser to trust the server. The domain name in the certificate must also match the domain name used by the server. For example, you'll get a warning as shown in the image to the left if you open a new browser window and type in the IP address to our server.
Click the following link to connect directly to realtimelogic.com's IP address: https://220.127.116.11
Using certificates in embedded systems can be a bit overwhelming if you are new to certificate management. Luckily for you, we have many years of experience working with certificates for embedded systems. Please feel free to contact us should you have any questions on certificate deployment in embedded systems.
We also provide a free certificate management tool, which lets you create standard RSA certificates or the new Elliptic Curves Cryptography (ECC) Certificates. ECC certificates are much smaller than RSA certificates and are a good fit for memory constrained devices. Most modern browsers support ECC certificates and our certificate management application lets you instantly create and test ECC certificates so you can actually see how this new technology works.