Just to make sure I have this right

Just trying to understand the security and I’m getting a bit confused with myself so just to confirm AFAIK the security is as below:

  1. Once the initial connection is made the client is set to a “secure mode” and will only accept backup requests from the initial requesting server.

  2. The server is verified using a public/private crypto key as well as a random password stored on the client.

  3. All communications over the internet are encrypted end to end if not is is possible for this to be set?