If i dont have key ageement and key exchange. Can my symetric cipher work?. My understanding is that the symetric key used for both encryption and decryption is the agreed key between the client and server after key agreement has been done. For key agreement to work i thought you need a private key and public key pair. So when there is a client and server public and private key used everything is fine. What about when there is no client private and public key but there is a root key on the client side. Also when there are neither root keys or client keys on the client side. On the server side there is always root and server keys. Even when there is no client or root keys on the client side the data is still encrypted over the ssl connction in some way..i used sniffer software to trace the packets...thats how i know...how can this be?