Preview edition: February 2021
Language: English (480 pages)
Formats: Paperback, PDF, EPUB,
Online; no DRM
Understanding and deploying SSL/TLS and
PKI to secure servers and web applications, by Ivan Ristić
With your purchase you will receive two versions of the book: the preview of the second
edition as well as the complete first edition. Read more on Ivan's
blog.
For system administrators, developers, and IT security professionals, this book provides a comprehensive
coverage of the ever-changing field of SSL/TLS and Internet PKI. Written
by Ivan Ristić, a security researcher and author of SSL Labs, this book will teach you everything you
need to know to protect your systems from eavesdropping and impersonation attacks.
“The most comprehensive book about deploying TLS in the real world!”
Nasko Oskov, Chrome Security developer and former SChannel developer
“Meticulously researched.”
Eric Lawrence, Fiddler author and former Internet Explorer Program Manager
“The most to the point and up to date book about SSL/TLS I've read.”
Jakob Schlyter, IT security advisor and DANE co-author
The chapters in green have been written, rewritten, or updated for the second edition. The remaining
chapters are as they were in the first edition, last revised in 2017. You can find
out more information in Ivan's
blog post.
Preface
Part I: SSL/TLS and PKI 1. SSL, TLS, and Cryptography
2. TLS 1.3
3. TLS 1.2
4. Public Key Infrastructure
Part II: Problems and Attacks 5. Attacks against PKI
6. HTTP and Browser Issues
7. Implementation Issues
8. Protocol Attacks
Part III: Deployment and Development 9. Performance
10. HSTS, CSP and Pinning
11. Configuration Guide
Part IV: OpenSSL 11. OpenSSL Command Line
12. Testing TLS with OpenSSL
Index
About the Author
|
Ivan Ristić is a security researcher, engineer, and
author, known especially for his
contributions to the web application firewall field and development of ModSecurity, an open source web application
firewall,
and for his SSL/TLS and PKI research, tools and guides published on the SSL Labs web site.
He is the author of two books, Apache Security and
ModSecurity Handbook,
which he publishes via Feisty Duck, his own
platform
for continuous writing and publishing. Ivan is an active participant in the security
community and you'll often find him speaking
at security conferences such as Black Hat, RSA, OWASP AppSec, and others. His latest
project, Hardenize, is a security posture analysis
service that makes security fun again.
|
OpenSSL Cookbook
A free 100-page book that covers the most frequently used OpenSSL
features and commands, from the first edition of Bulletproof SSL and TLS.
Twitter
If you have any questions, please find us on Twitter. If your question is about the book content,
contact @ivanristic. For everything else,
write to @feistyduck.
Hands-on SSL/TLS and PKI training (Remote in 2021)
The Best TLS and PKI Training
If you're a developer, system
administrator, or security professional, we'll teach you everything you need to know for your
day-to-day work.
Join us for four half-days full of fun practical work!
;
|
|