1. client sends request for certificate to server
 2. client receives the certificate and verifies it
 3. client generates a symetric-key (client side symetric-key)
 4. encrypt the symetric-key using servers public key
 5. send the encrypted symetric-key to server
 6. server decodes the encrypted symetric-key using it private-key
 7. server generates a symetric-key (server side symetric-key)
 8. server encrypts SSSK with CSSK and sends it to client
 9. client decodes encrypted SSSK using CSSK
10. from here on both server and client with encrypt and decrypt using SSSK