Bulletproof TLS and PKI, Second Edition - Ivan Ristic

Bulletproof TLS and PKI, Second Edition

Understanding and deploying SSL/TLS and PKI to secure servers and web applications

(Autor)

Buch | Softcover
510 Seiten
2022 | 2nd New edition
Feisty Duck Ltd (Verlag)
978-1-907117-09-1 (ISBN)
69,95 inkl. MwSt
Bulletproof TLS and PKI is a complete guide to using TLS encryption and PKI to deploy secure servers and web applications. Written by Ivan Ristic, author of the popular SSL Labs web site, this book will teach you everything you need to know to protect your systems from eavesdropping and impersonation attacks.

In this book, you'll find just the right mix of theory, protocol detail, vulnerability and weakness information, and deployment advice to get your job done:

- Comprehensive coverage of the ever-changing field of SSL/TLS and Internet PKI, with updates to the digital version
- For IT professionals, help to understand security risks
- For system administrators, help to deploy systems securely
- For developers, help to secure web applications
- Practical and concise, with added depth as needed
- Introduction to cryptography and the Internet threat model
- Coverage of TLS 1.3 as well as earlier protocol versions
- Discussion of weaknesses at every level, covering implementation issues, HTTP and browser problems, and protocol vulnerabilities
- Coverage of the latest attacks, such as BEAST, CRIME, BREACH, Lucky 13, RC4 biases, Triple Handshake Attack, and Heartbleed
- Thorough deployment advice, including advanced technologies, such as Strict Transport Security, Content Security Policy, and pinning
- Guide to using OpenSSL to generate keys and certificates and to create and run a private certification authority
- Guide to using OpenSSL to test servers for vulnerabilities

Ivan Ristic writes computer security books and builds security products. His book Bulletproof TLS and PKI, the result of more than a decade of research and study, is widely recognised as the de-facto SSL/TLS and PKI reference manual. His work on SSL Labs made hundreds of thousands of web sites more secure. Before that, he created ModSecurity, a leading open source web application firewall. More recently, Ivan founded Hardenize, a platform for continuous security monitoring that provides free assessments to everyone. He's a member of Let's Encrypt's technical advisory board.

Part I: SSL/TLS and PKI
1. SSL, TLS, and Cryptography
2. TLS 1.3
3. TLS 1.2
4. Public Key Infrastructure

Part II: Problems and Attacks
5. Attacks against PKI
6. HTTP and Browser Issues
7. Implementation Issues
8. Protocol Attacks

Part III: Deployment and Development
9. Performance
10. HSTS, CSP, and Pinning
11. Configuration Guide

Part IV: OpenSSL Command-Line
11. Working with OpenSSL
12. Testing TLS servers with OpenSSL

Erscheinungsdatum
Verlagsort London
Sprache englisch
Maße 191 x 235 mm
Themenwelt Informatik Netzwerke Sicherheit / Firewall
Informatik Theorie / Studium Kryptologie
ISBN-10 1-907117-09-1 / 1907117091
ISBN-13 978-1-907117-09-1 / 9781907117091
Zustand Neuware
Haben Sie eine Frage zum Produkt?
Andere Ausgabe
Buch | Softcover (2014)
55,90 €
Mehr entdecken
aus dem Bereich
Cyber-Sicherheit - Norbert Pohlmann
Cyber-Sicherheit
Das Lehrbuch für Konzepte, Prinzipien, Mechanismen, Architekturen und …

von Norbert Pohlmann

Buch | Softcover (2022)
Springer Vieweg (Verlag)
34,99
Praxisbuch ISO/IEC 27001 - Michael Brenner; Nils gentschen Felde; Wolfgang Hommel
Praxisbuch ISO/IEC 27001
Management der Informationssicherheit und Vorbereitung auf die …

von Michael Brenner; Nils gentschen Felde; Wolfgang Hommel

Buch (2024)
Carl Hanser (Verlag)
69,99
Hackbibel 3 - Chaos Computer Club
Hackbibel 3

von Chaos Computer Club

Buch | Softcover (2024)
KATAPULT Verlag
28,00
auf Facebook teilen
bei Twitter
Link zu dieser Seite kopieren