Secure Sockets Layer (SSL) Fred Schank Kevin Wetter.

Slides:



Advertisements
Similar presentations
Web security: SSL and TLS
Advertisements

Spring 2012: CS419 Computer Security Vinod Ganapathy SSL, etc.
SSL Implementation Guide Onno W. Purbo
Internet and Intranet Protocols and Applications Lecture 9a: Secure Sockets Layer (SSL) March, 2004 Arthur Goldberg Computer Science Department New York.
Cryptography and Network Security
7-1 Chapter 7 – Web Security Use your mentality Wake up to reality —From the song, "I've Got You under My Skin“ by Cole Porter.
Introduction to OpenSSL Jing Dalhousie University.
Chapter 7 Web Security MSc. NGUYEN CAO DAT Dr. TRAN VAN HOAI.
SSL & SharePoint IT:Network:Applications. Agenda Secure Socket Layer Encryption 101 SharePoint Customization SharePoint Integration.
Mar 19, 2002Mårten Trolin1 This lecture On the assignment Certificates and key management SSL/TLS –Introduction –Phases –Commands.
Security Overview Hofstra University University College for Continuing Education - Advanced Java Programming Lecturer: Engin Yalt May 24, 2006.
An Introduction to Security Concepts and Public Key Infrastructure (PKI) Mary Thompson.
Apache Web Server Quick and Dirty Steve Gibbard for SANOG 16 (Originally by Joel Jaeggli for AfNOG 2007) ‏
Cryptography and Network Security Chapter 17
Symmetric Key Distribution Protocol with Hybrid Crypto Systems Tony Nguyen.
EECC694 - Shaaban #1 lec #16 Spring Properties of Secure Network Communication Secrecy: Only the sender and intended receiver should be able.
Topic 11: Key Distribution and Agreement 1 Information Security CS 526 Topic 11: Key Distribution & Agreement, Secure Communication.
Chapter 8 Web Security.
SSL (Secure Socket Layer) and Secure Web Pages Rob Sodders, University of Florida CIS4930 “Advanced Web Design” Spring 2004
TLS/SSL Review. Transport Layer Security A 30-second history Secure Sockets Layer was developed by Netscape in 1994 as a protocol which permitted persistent.
Apache Security with SSL Using FreeBSD SANOG VI IP Services Workshop July 18, 2005 Hervey Allen Network Startup Resource Center.
SSL Technology Overview and Troubleshooting Tips.
Alpha Five User Group, Bill Parker, SSL Security and WAS, July 2007 SSL Security with Alpha Five App Server Protecting sensitive or personal data.
Digital Certificates. What is a Digital Certificate? A digital certificate is the equivalent of your business card in the e-commerce world. It says who.
CSCI 6962: Server-side Design and Programming
IT:Network:Applications.  Single Key (Symmetric) encryption ◦ One “key” or passphrase used to encrypt and decrypt ◦ FAST – good for large amounts of.
SSL and https for Secure Web Communication CSCI 5857: Encoding and Encryption.
Secure Socket Layer (SSL)
Apache and SSL Presented by Paul Weinstein, Waubonsie Consulting, O’Reilly Open Source Convention July 24, 2002.
Web Services CSCI N321 – System and Network Administration Copyright © 2007,2008 by Scott Orr and the Trustees of Indiana University.
1 Apache and Virtual Sites and SSL Dorcas Muthoni.
Protecting Internet Communications: Encryption  Encryption: Process of transforming plain text or data into cipher text that cannot be read by anyone.
E-commerce What are the relationships among: – Client (i.e. you) – Server – Bank – Certification authority Other things to consider: – How to set up your.
Introduction to Secure Sockets Layer (SSL) Protocol Based on:
Cryptography and Network Security (CS435) Part Fourteen (Web Security)
Web Security : Secure Socket Layer Secure Electronic Transaction.
Hands On Networking Network Applications Ram P Rustagi, ISE Dept Kundan Kumar, MCA Dept Manini Sahoor, MCA Dept Ravi Teja, MCA Dept Sourav.
Digital Envelopes, Secure Socket Layer and Digital Certificates By: Anthony and James.
1 Securing Data and Communication. 2 Module - Securing Data and Communication ♦ Overview Data and communication over public networks like Internet can.
Data Encryption using SSL Topic 5, Chapter 15 Network Programming Kansas State University at Salina.
SSL(Secure Socket Layer) Guided By:- Presented By:- Richard Sinn Jimmy Mehta
Apache Web Server Quick and Dirty for AfNOG 2015 (Originally by Joel Jaeggli for AfNOG 2007) ‏
Apache Web Server Quick and Dirty Evelyn NAMARA for AfNOG 2014 (Originally by Joel Jaeggli for AfNOG 2007) ‏
Apache Web Server Quick and Dirty Ayitey Bulley for AfNOG 2011 (Originally by Joel Jaeggli for AfNOG 2007) ‏
/etc/apache2/apache2.conf # Porneste gazduirea virtuala pe http NameVirtualHost :80 # Porneste gazduirea virtuala pe https NameVirtualHost :443.
Public-key Infrastructure. Computer Center, CS, NCTU 2 Cryptosystems  Cryptosystems Symmetric Asymmetric (public-key)  RSA Public key: n=3233, e=17.
Apache Web Server Quick and Dirty Kevin G. Chege for AfNOG 2013 (Originally by Joel Jaeggli for AfNOG 2007) ‏
Topic 14: Secure Communication1 Information Security CS 526 Topic 14: Key Distribution & Agreement, Secure Communication.
Advanced Sendmail Part 1
Installing a SSL Server. Creating a key Before you can create a digital signature/certificate. You need first to create a private key. To do this process.
1 Certification Issue : how do we confidently know the public key of a given user? Authentication : a process for confirming or refuting a claim of identity.
1 Chapter 7 WEB Security. 2 Outline Web Security Considerations Secure Socket Layer (SSL) and Transport Layer Security (TLS) Secure Electronic Transaction.
Secure Socket Layer SSL and TLS. SSL Protocol Peer negotiation for algorithm support Public key encryptionPublic key encryption -based key exchange and.
X509 Web Authentication From the perspective of security or An Introduction to Certificates.
Secure Socket Layer Protocol Dr. John P. Abraham Professor, UTRGV.
ENCRYPTION, SSL, CERTIFICATES RACHEL AKISADA & MELANIE KINGSLEY.
Communication protocols 2. HTTP Hypertext Transfer Protocol, is the protocol of World Wide Web (www) Client web browser Web server Request files Respond.
1 Internet data security (HTTPS and SSL) Ruiwu Chen.
Apache with SSL building from source
Apache Security with SSL Using FreeBSD
Secure Sockets Layer (SSL)
Created by : Ashish Shah, J.M. PATEL COLLEGE OF COMMERCE
Cryptography and Network Security
Created by : Ashish Shah, J.M. PATEL COLLEGE OF COMMERCE
Electronic Payment Security Technologies
Cryptography and Network Security
Presentation transcript:

Secure Sockets Layer (SSL) Fred Schank Kevin Wetter

Introduction SSL – Where does it fit in? SSL – Where does it fit in? SSL Handshake Process SSL Handshake Process Handling Certificates Handling Certificates Example Example

SSL Non-secure request Secure request

Ciphers No encryption No encryption Stream Ciphers Stream Ciphers RC4 with 40-bit keys RC4 with 40-bit keys RC4 with 128-bit keys RC4 with 128-bit keys CBC Block Ciphers RC2 with 40 bit key DES with 40 bit key DES with 56 bit key Triple-DES with 168 bit key Idea (128 bit key) Fortezza (96 bit key)

SSL Handshake

Certificates Digital form of identifying a node Digital form of identifying a node Comprised of: Comprised of: Location Info Location Info Name Info Name Info Fingerprint Info Fingerprint Info CA Info CA Info

Certificate Authorities (CA’s) Issues certificates to “trusted” sites for a fee Issues certificates to “trusted” sites for a fee Common CA’s Common CA’s Verisign Verisign InterSSL InterSSL WorldTrust WorldTrust NOTE: Anyone can act as a CA NOTE: Anyone can act as a CA popular browsers only trust certain CA’s popular browsers only trust certain CA’s

Issuing a Certificate Create a “request for signing”: Create a “request for signing”: #> openssl req -new > new.cert.csr #> openssl req -new > new.cert.csr Remove passphrase from key: Remove passphrase from key: #> openssl rsa -in privkey.pem -out new.cert.key #> openssl rsa -in privkey.pem -out new.cert.key Sign the certificate: Sign the certificate: #> openssl x509 -in new.cert.csr -out new.cert.cert -req -signkey new.cert.key -days 365 #> openssl x509 -in new.cert.csr -out new.cert.cert -req -signkey new.cert.key -days 365

Configuring Apache /etc/httpd/conf.d/ssl.conf /etc/httpd/conf.d/ssl.conf SSL config file for Apache SSL config file for Apache Changes Changes SSLCertificateFile /etc/httpd/conf/ssl.crt/new.cert.cert SSLCertificateFile /etc/httpd/conf/ssl.crt/new.cert.cert Specifies where server’s certificate is Specifies where server’s certificate is SSLCertificateKeyFile /etc/httpd/conf/ssl.crt/new.cert.key SSLCertificateKeyFile /etc/httpd/conf/ssl.crt/new.cert.key Specifies where server’s private key is Specifies where server’s private key is

Example

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.