[deleted] since an imposter can't perform step 3 (since it doesn't have the private key) it can never move on to step 4. It doesn't have the shared secret, so it can't complete the handshake.
Right. Unless an attacker can brute-force a private key (virtually impossible within our lifetimes, but certificates usually have an expiration date for added security)
forumuser There are many examples and I don't have to prove anything.
I hate to be like this, but I also hate for people on this forum to read your post and believe what you've written. You do have to prove what you're claiming here. Without the private key and without help from a trusted CA (not going to happen, which is why they're trusted), it's virtually impossible to spoof a certificate.