Nowdoly3gfkn7io1csye
1 DAY CONFERENCE

The Best TLS Training in the World

Topics covered:

Thursday, 15th September at CodeNode, London

Ivan Ristic. will be speaking. Starts at 9:00 AM.

From the author of much acclaimed "Bulletproof SSL and TLS" this practical course will teach you how to deploy secure servers and encrypted web applications during a day packed with theory and practical work.

We’ll focus on what you need in your daily work to deliver best security, availability and performance. And you will learn how to get an A+ on SSL Labs!

Thanks to our sponsors

The Best TLS Training in the World

From the author of much acclaimed "Bulletproof SSL and TLS", this practical course will teach you how to deploy secure servers and encrypted web applications during a day packed with theory and practical work. We’ll focus on what you need in your daily work to deliver best security, availability and performance. And you will learn how to get an A+ on SSL Labs!

Key Learning Objectives:

● Understand threats and attacks against encryption

● Identify real risks that apply to your systems

● Deploy servers with strong private keys and valid certificates

● Deploy TLS configurations with strong encryption and forward secrecy

● Understand higher­level attacks against web applications

● Use the latest defence technologies, such as HSTS, CSP, and HPKP

Programme:

1. Introduction

a. The need for network encryption

b. Understanding encrypted communication

c. The role of public key infrastructure (PKI)

d. SSL/TLS and Internet PKI threat model

2. Keys and certificates

a. RSA and ECDSA: selecting the right key algorithm

b. Certificate hostnames and lifetime

c. Practical work:

i. Private key generation

ii. Certificate Signing Request (CSR) generation

iii. Self­signed certificates

iv. Obtaining valid certificates from Let’s Encrypt

d. Understanding revocation

3. Protocols and cipher suites

a. Protocol security

b. Key exchange strength

c. Forward security

d. Cipher suite configuration

e. Practical work

i. Secure web server configuration

ii. Server testing using SSL Labs

f. Sidebar: Server Name indication (SNI)

4. Performance considerations

5. HTTPS topics

a. Mixed content

b. Cookie security

c. CRIME: Information leakage via compression

d. Content Security Policy

e. HTTP Strict Transport Security

f. HTTP Public Key Pinning

6. Putting it all together: Getting A+ in SSL Labs

7. Parting thoughts

a. Troubleshooting tips and tricks

i. Command­line tools: OpenSSL and testssl.sh

ii. Wireshark

b. Migration to HTTPS in large environments

c. What’s coming in TLS 1.3

Ivan Ristic

Ivan Ristic is a security researcher, engineer, and author, known especially for his contributions to the web application firewall field and development of ModSecurity, an open source web application firewall, and for his SSL/TLS and PKI research, tools and guides published on the SSL Labs web site.

CodeNode

CodeNode is the UK's largest venue dedicated to Technology events and was designed to provide a space for Skills Matter's community of software professionals to come together and enjoy meetups, conferences, training and networking events. With fantastic transport links and located in the heart of London's Tech City, Codenode welcomes thousands of engineers each year, who come together to learn and share skills, exoerience and collaborate on projects.

CodeNode features six dedicated event spaces, a large break-out area, complete with fully-licensed bar, reliable wifi, plenty of power sockets, and 6 dedicated event and collaboration spaces.

H0ychpcrxfvcdujzguuq

CodeNode

10 South Place, London, EC2M 7EB, GB


View details, travel and nearby hotels

To discuss sponsorship opportunities please contact the team:

Thanks to our sponsors

Hold tight, skillscasts coming soon!

 

Overview

From the author of much acclaimed "Bulletproof SSL and TLS" this practical course will teach you how to deploy secure servers and encrypted web applications during a day packed with theory and practical work.

We’ll focus on what you need in your daily work to deliver best security, availability and performance. And you will learn how to get an A+ on SSL Labs!

Thanks to our sponsors

Programme

The Best TLS Training in the World

From the author of much acclaimed "Bulletproof SSL and TLS", this practical course will teach you how to deploy secure servers and encrypted web applications during a day packed with theory and practical work. We’ll focus on what you need in your daily work to deliver best security, availability and performance. And you will learn how to get an A+ on SSL Labs!

Key Learning Objectives:

● Understand threats and attacks against encryption

● Identify real risks that apply to your systems

● Deploy servers with strong private keys and valid certificates

● Deploy TLS configurations with strong encryption and forward secrecy

● Understand higher­level attacks against web applications

● Use the latest defence technologies, such as HSTS, CSP, and HPKP

Programme:

1. Introduction

a. The need for network encryption

b. Understanding encrypted communication

c. The role of public key infrastructure (PKI)

d. SSL/TLS and Internet PKI threat model

2. Keys and certificates

a. RSA and ECDSA: selecting the right key algorithm

b. Certificate hostnames and lifetime

c. Practical work:

i. Private key generation

ii. Certificate Signing Request (CSR) generation

iii. Self­signed certificates

iv. Obtaining valid certificates from Let’s Encrypt

d. Understanding revocation

3. Protocols and cipher suites

a. Protocol security

b. Key exchange strength

c. Forward security

d. Cipher suite configuration

e. Practical work

i. Secure web server configuration

ii. Server testing using SSL Labs

f. Sidebar: Server Name indication (SNI)

4. Performance considerations

5. HTTPS topics

a. Mixed content

b. Cookie security

c. CRIME: Information leakage via compression

d. Content Security Policy

e. HTTP Strict Transport Security

f. HTTP Public Key Pinning

6. Putting it all together: Getting A+ in SSL Labs

7. Parting thoughts

a. Troubleshooting tips and tricks

i. Command­line tools: OpenSSL and testssl.sh

ii. Wireshark

b. Migration to HTTPS in large environments

c. What’s coming in TLS 1.3

Ivan Ristic

Ivan Ristic is a security researcher, engineer, and author, known especially for his contributions to the web application firewall field and development of ModSecurity, an open source web application firewall, and for his SSL/TLS and PKI research, tools and guides published on the SSL Labs web site.

Venue

CodeNode

CodeNode is the UK's largest venue dedicated to Technology events and was designed to provide a space for Skills Matter's community of software professionals to come together and enjoy meetups, conferences, training and networking events. With fantastic transport links and located in the heart of London's Tech City, Codenode welcomes thousands of engineers each year, who come together to learn and share skills, exoerience and collaborate on projects.

CodeNode features six dedicated event spaces, a large break-out area, complete with fully-licensed bar, reliable wifi, plenty of power sockets, and 6 dedicated event and collaboration spaces.

H0ychpcrxfvcdujzguuq

CodeNode

10 South Place, London, EC2M 7EB, GB


View details, travel and nearby hotels
Sponsors

Thanks to our sponsors

To discuss sponsorship opportunities please contact the team:

Skillscasts

Hold tight, skillscasts coming soon!