ssl https cryptography ssl-certificate man-in-the-middle

Man In Middle Attack for HTTPS

A man in middle can decrypt the certificate(public key for decryption is available on everywhere) and steal the public key for the session. Now the middle man can read all encrypted messages from web server to client. But cannot read messages from client to server. So how does HTTPS avoid this?

Solution

You're quite simply misunderstanding how asymmetric cryptography works:

Public keys are used to encrypt and to verify a signature (if these operations are provided by the algorithm used).
Private keys are used to decipher and to sign.

The public key in the certificate will NOT let you decrypt anything, it's not what it's for.

400 Bad Request: The SSL certificate error
Where is a CAcert's password used?
curl error 35 : failed to receive handshake, SSL/TLS connection failed
Curl: Fix CURL (51) SSL error: no alternative certificate subject name matches
How to disable SSL verification in Spring Vault
gitea using a normal user and https
Is possible to use Amazon Elastic Beanstalk with SSL (HTTPS) without a Load Balancer?
Received fatal alert: bad_certificate
Composer Curl error 60: SSL certificate problem: unable to get local issuer certificate
Reason to disable CSRF in spring boot
Composer : SSL certificate problem: unable to get local issuer certificate
Unable to verify leaf signature
Java Keytool error after importing certificate , "keytool error: java.io.FileNotFoundException & Access Denied"
SSL, Connection is not secure
kubectl unable to connect to server: x509: certificate signed by unknown authority
Cannot figure out why DTLS handshake does not complete
file_get_contents(): SSL operation failed with code 1, Failed to enable crypto
How to Check Subject Alternative Names for a SSL/TLS Certificate?
Self-Signed CA Certificates Rejected by Android
AWS Java SDK SSL Certificates
How to use awx cli?
nodejs environment variable "NODE_EXTRA_CA_CERTS"
How to connect to MongoDB with certificate using DataGrip?
Insomnia : Error: SSL peer certificate or SSH remote key was not OK
AWS EC2 Spring Boot Deployment - SSL/HTTPS Error after Configuring Route 53, ACM, and GoDaddy
Resolving javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed Error?
Implicitly trust SSL certificates in iOS app for private API
Protecting against MitM (https) seeing password with encryption using included pub. key in iOS/Android app
Docker not able to pull images behind proxy TLS handshake timeout
How come I can make SSL connections to AWS Postgre RDS, when the ca certificate already expired?