How are the keys for SSL generated and how does PassagePoint handle the SSL encryption?

PassagePoint uses Java SSLEngine (http://docs.oracle.com/javase/7/docs/api/javax/net/ssl/SSLEngine.html) for client/server secure connection over the Transport Layer Security protocol.
 
The SSL key is generated by Java keytool (http://docs.oracle.com/javase/7/docs/technotes/tools/windows/keytool.html), and the keystore file is saved in the application binary.

Client/server loads the key from application binary at run-time, performs the SSL handshake, and data will flow through the SSLEngine.

Outbound data are encrypted and integrity protected, and inbound data reverse the process.