Bulletproof SSL and TLS book cover
Buy ebook £24
Plus VAT if you're in the EU, excl. UK
Get paperback from Amazon: .com .ca
.co.uk .de .fr .jp
Includes free ebook after registration.
Students 50% off
Plus VAT if you're in the EU, excl. UK
Digital release: August 2015
Paperback release: August 2015
 First published in: August 2014
Language: English (548 pages)
ISBN: 978-1907117046
Formats: Paperback, PDF, EPUB,
     Kindle, Online; no DRM
Bulletproof SSL and TLS
Understanding and deploying SSL/TLS and PKI to secure servers and web applications, by Ivan Ristić

For system administrators, developers, and IT security professionals, this book provides a comprehensive coverage of the ever-changing field of SSL/TLS and Internet PKI. Written by Ivan Ristić, a security researcher and author of SSL Labs, this book will teach you everything you need to know to protect your systems from eavesdropping and impersonation attacks. This book is continuously updated. To read more about the maintenance process, click here.

“The most comprehensive book about deploying TLS in the real world!”

Nasko Oskov, Chrome Security developer and
former SChannel developer

“Meticulously researched.”

Eric Lawrence, Fiddler author and former
Internet Explorer Program Manager

“The most to the point and up to date book about SSL/TLS I've read.”

Jakob Schlyter, IT security advisor and DANE co-author
Table of Contents 
Preface


Part I: SSL/TLS and PKI
            1. SSL, TLS, and Cryptography
            2. Protocol
            3. Public Key Infrastructure
            4. Attacks against PKI
            5. HTTP and Browser Issues
            6. Implementation Issues
            7. Protocol Attacks


Part II: Deployment and Development
            8. Deployment
            9. Performance Optimization
            10. HSTS, CSP and Pinning


Part III: Practical Configuration
            11. OpenSSL Cookbook
            12. Testing with OpenSSL
            13. Configuring Apache
            14. Configuring Java and Tomcat
            15. Configuring Microsoft Windows and IIS
            16. Configuring Nginx

Index

About the Author

Ivan Ristić is a security researcher, engineer, and author, known especially for his contributions to the web application firewall field and development of ModSecurity, an open source web application firewall, and for his SSL/TLS and PKI research, tools and guides published on the SSL Labs web site.

He is the author of two books, Apache Security and ModSecurity Handbook, which he publishes via Feisty Duck, his own platform for continuous writing and publishing. Ivan is an active participant in the security community and you'll often find him speaking at security conferences such as Black Hat, RSA, OWASP AppSec, and others. He's currently Director of Application Security Research at Qualys.

Preview

TOC, Preface, and Chapter 1
Detailed information about the contents, as well as the first chapter.

OpenSSL Cookbook
A free 100-page book that covers the most frequently used OpenSSL features and commands, based on chapters 11 and 12 of Bulletproof SSL and TLS.

Twitter

If you have any questions, please find us on Twitter. If your question is about the book content, contact @ivanristic. For everything else, write to @feistyduck.

Book Reviewer Kit

Resources

Ivan’s Blog

Ivan’s SSL Work

Below are links to some of Ivan’s SSL work:

Qualys SSL Test

Detailed SSL configuration test of any public SSL server. Click here to test yours.

Join me for hands-on SSL/TLS and PKI training in London on December 14th

Available now: The Best TLS Training in The World

If you're developer or a system administrator I'll teach you everything you need to know for your day-to-day work. The next training will be held in London on December 14th. Join me for a day full of fun practical work!

;