Bulletproof SSL and TLS: Understanding and Deploying SSL/TLS and PKI to Secure Servers and Web Applications - Softcover

Ivan Ristic

 
9781907117046: Bulletproof SSL and TLS: Understanding and Deploying SSL/TLS and PKI to Secure Servers and Web Applications
Softcover
ISBN 10: 1907117040 ISBN 13: 9781907117046
Verlag: Feisty Duck Ltd, 2014

Inhaltsangabe

Bulletproof SSL and TLS is a complete guide to using SSL and TLS encryption to deploy secure servers and web applications. Written by Ivan Ristic, the author of the popular SSL Labs web site, this book will teach you everything you need to know to protect your systems from eavesdroppingand impersonation attacks.
In this book, you'll find just the right mix of theory, protocol detail, vulnerability and weakness information, and deployment advice to get your job done:
Comprehensive coverage of the ever-changing field of SSL/TLS and Internet PKI, with updates to the digital version
For IT security professionals, help to understand the risks

For system administrators, help to deploy systems securely

For developers, help to design and implement secure web applications
Practical and concise, with added depth when details are relevant

Introduction to cryptography and the latest TLS protocol version

Discussion of weaknesses at every level, covering implementation issues, HTTP and browser problems, and protocol vulnerabilities

Coverage of the latest attacks, such as BEAST, CRIME, BREACH, Lucky 13, RC4 biases, Triple Handshake Attack, and Heartbleed
Thorough deployment advice, including advanced technologies, such as Strict Transport Security, Content Security Policy, and pinning

Guide to using OpenSSL to generate keys and certificates and to create and run a private certification authority
Guide to using OpenSSL to test servers for vulnerabilities
Practical advice for secure server configuration using Apache httpd, IIS, Java, Nginx, Microsoft Windows, and Tomcat

Die Inhaltsangabe kann sich auf eine andere Ausgabe dieses Titels beziehen.

Über die Autorin bzw. den Autor

Ivan Ristic is a security researcher, engineer, and author, known especially for his contributions to the web application firewall field and development of ModSecurity, an open source web application firewall, and for his SSL/TLS and PKI research, tools and guides published on the SSL Labs web site. He is the author of two books, Apache Security and ModSecurity Handbook, which he publishes via Feisty Duck, his own platform for continuous writing and publishing. Ivan is an active participant in the security community and you'll often find him speaking at security conferences such as Black Hat, RSA, OWASP AppSec, and others. He's currently Director of Application Security Research at Qualys.

„Über diesen Titel“ kann sich auf eine andere Ausgabe dieses Titels beziehen.

Verlag
Feisty Duck Ltd
Erscheinungsdatum
2014
Sprache
Englisch
ISBN 10 
1907117040
ISBN 13 
9781907117046
Einband
Taschenbuch
Anzahl der Seiten
528
Kontakt zum Hersteller
Nicht verfügbar
Verantwortliche Person
Nicht verfügbar