Mu0unxv6fn3bcnoisyht
2 DAY CONFERENCE

The Best TLS Training in the World

Topics covered:

Wednesday, 13th - Thursday, 14th December at CodeNode, London

Scott Helme. will be speaking. Starts at 9:00 AM.

Designed by the author of the much acclaimed Bulletproof SSL and TLS, this practical course will teach you how to deploy secure servers and encrypted web applications during a day packed with theory and practical work. We’ll focus on what you need in your daily work to deliver best security, availability and performance. And you will learn how to get an A+ on SSL Labs!

Why This Course is for You

  • Understand threats and attacks against encryption
  • Identify real risks that apply to your systems
  • Deploy servers with strong private keys and valid certificates
  • Deploy TLS configurations with strong encryption and forward secrecy
  • Understand higher­-level attacks against web applications
  • Use the latest defence technologies, such as HSTS, CSP, and HPKP
  • Learn about key PKI standards and formats
  • Understand where practice differs from theory
  • Analyze certificate lifecycle in detail
  • Evaluate PKI weaknesses and how they affect you
  • Deploy robust protection using public key pinning
  • Learn about what's coming in the future
  • Practise what you've learned

Target Audience

This course is for system administrators, developers, and IT security professionals who wish to learn the theory and practice of Internet PKI.

  • Level:​ Intermediate
  • Duration:​ 2 days
  • Extras:​ Lunch and refreshments included

About a month prior to the course we'll send you a digital copy of Bulletproof SSL and TLS, our comprehensive guide to SSL/TLS and Internet PKI. You'll get the paper copy on the day. We'll also give you a bunch of exercises and a hardcopy of the slides.

Prerequisites

  • Basic Linux command line skills: moving about, invoking commands, editing configuration files.
  • A laptop with a SSH client, which you will only need to connect to your assigned virtual server.
  • HTTP/HTTPS on ports 80 and 443
  • SSH on port 22
  • You should be comfortable using a command-line editor.
  • About Feisty Duck

    https://www.feistyduck.com/

    Feisty Duck is a London-based provider of computer security training and publisher of fine computer security and open source books. Our practical hands-on courses are held in small classes and led by industry experts. Topics include SSL/TLS, Internet PKI and Apache/Modsecurity.

    About the trainers

    Scott Helme is a security researcher, consultant and international speaker. He can often be found talking about web security and performance online and helping organisations better deploy both. Founder of report­uri.io, a free CSP report collection service, and securityheaders.io, a free security analyser, Scott has a tendency to always be involved in building something new and exciting.

Thanks to our sponsors

The Best TLS Training in the World

Course Outline

  1. Introduction

    1. The need for network encryption
    2. Understanding encrypted communication
    3. The role of public key infrastructure (PKI)
    4. SSL/TLS and Internet PKI threat model

  2. Keys and certificates

    1. RSA and ECDSA: selecting the right key algorithm and size
    2. Certificate hostnames and lifetime
    3. Practical work:
      1. Private key generation
      2. Certificate Signing Request (CSR) generation
      3. Self­signed certificates
      4. Obtaining valid certificates from Let’s Encrypt
    4. Sidebar: Revocation
    5. Sidebar: Performance considerations

  3. Protocols and cipher suites

    1. Protocol security
    2. Key exchange strength
    3. Forward security
    4. Cipher suite configuration
    5. Practical work
      1. Secure web server configuration
      2. Server testing using SSL Labs
    6. Sidebar: Server Name indication (SNI)
    7. Sidebar: Performance considerations

  4. HTTPS topics

    1. Man-in-the-middle attacks
    2. Mixed content
    3. Cookie security
    4. CRIME: Information leakage via compression
    5. HTTP Strict Transport Security
    6. Content Security Policy
    7. HTTP Public Key Pinning
    8. Practical work:
      1. Deploying HSTS to deploy robust encryption
      2. Deploying CSP to deal with mixed content

  5. Putting it all together: Getting an A+ in SSL Labs

We will also provide you with many additional exercises that you can work on in your own time. You'll be able to ask us for help via email. And if you're already familiar with the basics, we'll challenge you with some of the advanced exercises on the day.

Scott Helme

Scott Helme is a security researcher, consultant and international speaker. He can often be found talking about web security and performance online and helping organisations better deploy both.

CodeNode

CodeNode is the UK's largest venue dedicated to Technology events and was designed to provide a space for Skills Matter's community of software professionals to come together and enjoy meetups, conferences, training and networking events. With fantastic transport links and located in the heart of London's Tech City, Codenode welcomes thousands of engineers each year, who come together to learn and share skills, exoerience and collaborate on projects.

CodeNode features six dedicated event spaces, a large break-out area, complete with fully-licensed bar, reliable wifi, plenty of power sockets, and 6 dedicated event and collaboration spaces.

H0ychpcrxfvcdujzguuq

CodeNode

10 South Place, London, EC2M 7EB, GB


View details, travel and nearby hotels

To discuss sponsorship opportunities please contact the team:

Thanks to our sponsors

Hold tight, skillscasts coming soon!

 

Overview

Designed by the author of the much acclaimed Bulletproof SSL and TLS, this practical course will teach you how to deploy secure servers and encrypted web applications during a day packed with theory and practical work. We’ll focus on what you need in your daily work to deliver best security, availability and performance. And you will learn how to get an A+ on SSL Labs!

Why This Course is for You

  • Understand threats and attacks against encryption
  • Identify real risks that apply to your systems
  • Deploy servers with strong private keys and valid certificates
  • Deploy TLS configurations with strong encryption and forward secrecy
  • Understand higher­-level attacks against web applications
  • Use the latest defence technologies, such as HSTS, CSP, and HPKP
  • Learn about key PKI standards and formats
  • Understand where practice differs from theory
  • Analyze certificate lifecycle in detail
  • Evaluate PKI weaknesses and how they affect you
  • Deploy robust protection using public key pinning
  • Learn about what's coming in the future
  • Practise what you've learned

Target Audience

This course is for system administrators, developers, and IT security professionals who wish to learn the theory and practice of Internet PKI.

  • Level:​ Intermediate
  • Duration:​ 2 days
  • Extras:​ Lunch and refreshments included

About a month prior to the course we'll send you a digital copy of Bulletproof SSL and TLS, our comprehensive guide to SSL/TLS and Internet PKI. You'll get the paper copy on the day. We'll also give you a bunch of exercises and a hardcopy of the slides.

Prerequisites

  • Basic Linux command line skills: moving about, invoking commands, editing configuration files.
  • A laptop with a SSH client, which you will only need to connect to your assigned virtual server.
  • HTTP/HTTPS on ports 80 and 443
  • SSH on port 22
  • You should be comfortable using a command-line editor.
  • About Feisty Duck

    https://www.feistyduck.com/

    Feisty Duck is a London-based provider of computer security training and publisher of fine computer security and open source books. Our practical hands-on courses are held in small classes and led by industry experts. Topics include SSL/TLS, Internet PKI and Apache/Modsecurity.

    About the trainers

    Scott Helme is a security researcher, consultant and international speaker. He can often be found talking about web security and performance online and helping organisations better deploy both. Founder of report­uri.io, a free CSP report collection service, and securityheaders.io, a free security analyser, Scott has a tendency to always be involved in building something new and exciting.

Thanks to our sponsors

Programme

The Best TLS Training in the World

Course Outline

  1. Introduction

    1. The need for network encryption
    2. Understanding encrypted communication
    3. The role of public key infrastructure (PKI)
    4. SSL/TLS and Internet PKI threat model

  2. Keys and certificates

    1. RSA and ECDSA: selecting the right key algorithm and size
    2. Certificate hostnames and lifetime
    3. Practical work:
      1. Private key generation
      2. Certificate Signing Request (CSR) generation
      3. Self­signed certificates
      4. Obtaining valid certificates from Let’s Encrypt
    4. Sidebar: Revocation
    5. Sidebar: Performance considerations

  3. Protocols and cipher suites

    1. Protocol security
    2. Key exchange strength
    3. Forward security
    4. Cipher suite configuration
    5. Practical work
      1. Secure web server configuration
      2. Server testing using SSL Labs
    6. Sidebar: Server Name indication (SNI)
    7. Sidebar: Performance considerations

  4. HTTPS topics

    1. Man-in-the-middle attacks
    2. Mixed content
    3. Cookie security
    4. CRIME: Information leakage via compression
    5. HTTP Strict Transport Security
    6. Content Security Policy
    7. HTTP Public Key Pinning
    8. Practical work:
      1. Deploying HSTS to deploy robust encryption
      2. Deploying CSP to deal with mixed content

  5. Putting it all together: Getting an A+ in SSL Labs

We will also provide you with many additional exercises that you can work on in your own time. You'll be able to ask us for help via email. And if you're already familiar with the basics, we'll challenge you with some of the advanced exercises on the day.

Scott Helme

Scott Helme is a security researcher, consultant and international speaker. He can often be found talking about web security and performance online and helping organisations better deploy both.

Venue

CodeNode

CodeNode is the UK's largest venue dedicated to Technology events and was designed to provide a space for Skills Matter's community of software professionals to come together and enjoy meetups, conferences, training and networking events. With fantastic transport links and located in the heart of London's Tech City, Codenode welcomes thousands of engineers each year, who come together to learn and share skills, exoerience and collaborate on projects.

CodeNode features six dedicated event spaces, a large break-out area, complete with fully-licensed bar, reliable wifi, plenty of power sockets, and 6 dedicated event and collaboration spaces.

H0ychpcrxfvcdujzguuq

CodeNode

10 South Place, London, EC2M 7EB, GB


View details, travel and nearby hotels
Sponsors

Thanks to our sponsors

To discuss sponsorship opportunities please contact the team:

Skillscasts

Hold tight, skillscasts coming soon!