SSL Seed

After pretty much a full day working on getting SSL client connections to work on my Fez Spider, I was able to get it working thanks largely in part to this forum.

Along with ensuring that the time on the board was set to UTC, running “Update SSL Seed” in the GHI Config tool did the trick.

Seems I don’t actually need a certificate for basic SSL (though certainly would need one for mutual authentication) and I am now curious exactly what “Update SSL Seed” does.

Does it generate the pre-master secret? And does running “Update SSL Seed” repeatedly generate a new secret each time?

Do I have the option to provide my own pre-master secret instead and if so, what are my options for doing so?

Thank you for any explanation you can provide.