Just how private is SSL encryption? Everything I'm reading says that public and private keys are passed back and forth. I can see how that would make it almost impossible for someone to imitate and manipulate the information being transmitted... but couldn't someone very easily listen in on the whole "conversation", know what all the keys are to decrypt the messages (because they were transmitted during the initial handshake), and find out exactly what information was being communicated?