Alex Xu on Twitter: "Step 3 - After validating the SSL certificate, the client generates a session key and encrypts it using the public key. The server receives the encrypted session key
![Client Authentication During SSL Handshake (Sun Java System Directory Server Enterprise Edition 6.0 Reference) Client Authentication During SSL Handshake (Sun Java System Directory Server Enterprise Edition 6.0 Reference)](https://docs.oracle.com/cd/E19693-01/819-0997/images/cert.gif)
Client Authentication During SSL Handshake (Sun Java System Directory Server Enterprise Edition 6.0 Reference)
![tls - Why can't I decrypt SSL traffic with the client's private key only? - Information Security Stack Exchange tls - Why can't I decrypt SSL traffic with the client's private key only? - Information Security Stack Exchange](https://i.stack.imgur.com/dFU6e.png)