MySQL SSL Connections Explained

(Doc ID 2297451.1)

Last updated on NOVEMBER 22, 2017

Applies to:

MySQL Server - Version 5.7 and later
Information in this document applies to any platform.

Goal

High level overview of MySQL and SSL.

First place to start for context and knowledge is the SSL/TLS pages in the manual;

https://dev.mysql.com/doc/refman/5.7/en/encrypted-connections.html

It is recommended that some background knowledge of secure key exchange and or public key encryption is understood, however, it is not necessary to understand how SSL works, to set up an SSL connection to the Server.

 

Further recommended reading to build background knowledge on how SSL/TLS operates and how the initial exchange of keys occurs can be found;

https://en.wikipedia.org/wiki/Diffie%E2%80%93Hellman_key_exchange

https://en.wikipedia.org/wiki/Public-key_cryptography

https://en.wikipedia.org/wiki/Symmetric-key_algorithm

 

MySQL Server typically will use DH secure key exchange to initialise a secure connection which then will use a symetric-key cipher to maintain the encryption of the connection until terminated.

 

Solution

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms