Bulletproof SSL and TLS: Understanding and Deploying SSL/TLS and PKI to Secure Servers and Web Applications

Voorkant
Feisty Duck, 2013 - 524 pagina's

Bulletproof SSL and TLS is a complete guide to using SSL and TLS encryption to deploy secure servers and web applications. Written by Ivan Ristic, the author of the popular SSL Labs web site, this book will teach you everything you need to know to protect your systems from eavesdropping and impersonation attacks.

In this book, you’ll find just the right mix of theory, protocol detail, vulnerability and weakness information, and deployment advice to get your job done:

- Comprehensive coverage of the ever-changing field of SSL/TLS and Internet PKI, with updates to the digital version†

- For IT security professionals, help to understand the risks†

- For system administrators, help to deploy systems securely†

- For developers, help to design and implement secure web applications†

- Practical and concise, with added depth when details are relevant†

- Introduction to cryptography and the latest TLS protocol version†

- Discussion of weaknesses at every level, covering implementation issues, HTTP and browser problems, and protocol vulnerabilities†

- Coverage of the latest attacks, such as BEAST, CRIME, BREACH, Lucky 13, RC4 biases, Triple Handshake Attack, and Heartbleed†

- Thorough deployment advice, including advanced technologies, such as Strict Transport Security, Content Security Policy, and pinning†

- Guide to using OpenSSL to generate keys and certificates and to create and run a private certification authority†

- Guide to using OpenSSL to test servers for vulnerabilities†

- Practical advice for secure server configuration using Apache httpd, IIS, Java, Nginx, Microsoft Windows, and Tomcat

This book is available in paperback and a variety of digital formats without DRM.

 

Wat mensen zeggen - Een review schrijven

We hebben geen reviews gevonden op de gebruikelijke plaatsen.

Geselecteerde pagina's

Inhoudsopgave

SSL TLS and Cryptography
1
Protocol
23
PublicKey Infrastructure
63
Attacks against PKI
87
HTTP and Browser Issues
113
Implementation Issues
151
Protocol Attacks
181
Deployment
235
OpenSSL Cookbook
311
Testing with OpenSSL
357
Configuring Apache
379
Configuring Java and Tomcat
407
Configuring Microsoft Windows and IIS
441
Configuring Nginx
475
Summary
495
Index
497

Performance Optimization
257
HSTS CSP and Pinning
283
Back Cover
505
Copyright

Veelvoorkomende woorden en zinsdelen

Over de auteur (2013)

Ivan Ristic is a security researcher, engineer, and author, known especially for his contributions to the web application firewall field and development of ModSecurity, an open source web application firewall, and for his SSL/TLS and PKI research, tools, and guides published on the SSL Labs web site.

He is the author of three books: Apache Security (O’Reilly, 2005), ModSecurity Handbook (Feisty Duck, 2010) and Bulletproof SSL and TLS (Feisty Duck, 2014). Ivan is an active participant in the security community, and you’ll often find him speaking at security conferences, such as Black Hat, RSA, OWASP AppSec, and others. He’s currently Director of Application Security Research at Qualys.

Bibliografische gegevens