PLS ATTEMpT ALL QUESTIONS WITH NO PLAGIARISM

The security provided by SSL to secure a web session depends, partially, on the handling of the underlying public-key certificates. (a) Explain how an SSL client can determine whether a server that they are communicating with has supplied them with a valid public-key certificate during the SSL Handshake Protocol. (b) A university department decides to self-sign a public-key certificate for its own web server. What might go wrong when a prospective student tries to establish an SSL-protected connection with the departmental web server? (c) A local government office decides to use a third-party payment provider to process payments for electronic services offered through the government website. What might go wrong when a local resident tries to make a secure payment from the government website using SSL? (d) Comment on the extent to which you think that the way in which current web browsers manage certificate problems that arise during SSL sessions is effective.