An SSL connection is established though a handshake (a series of communications exchanges) between the client and the server.
The following diagram shows what happens during an SSL handshake:
CICS Transaction Gateway supports the JSSE implementation of SSL. JSSE as supplied with the Java SDK is the only supported option. For more information, see Security.
During server authentication, a connection is only established if the client trusts the server based on the information presented by the server to the client in its certificate.
During client authentication (if activated) the client sends its certificate information to the server. A connection is then only established if the client trusts the server and the server trusts the client, based on the information exchanged in both certificates.