Presentation is loading. Please wait.

Presentation is loading. Please wait.

ENCRYPTION, SSL, CERTIFICATES RACHEL AKISADA & MELANIE KINGSLEY.

Published bySuzanna Doyle Modified over 8 years ago

Similar presentations

Presentation on theme: "ENCRYPTION, SSL, CERTIFICATES RACHEL AKISADA & MELANIE KINGSLEY."— Presentation transcript:

1 ENCRYPTION, SSL, CERTIFICATES RACHEL AKISADA & MELANIE KINGSLEY

2 OVERVIEW Encryption Encryption example SSL How SSL Works SSL Certificates How to get a Certificate Man in the Middle Attacks

3 ENCRYPTION Best way to ensure data security Also referred to as cipher text Not easily understood by anyone other than authorized parties Main purpose is to protect confidentiality of digital data Key Elements Authentication Integrity Non-repudiation

4 HISTORY OF ENCRYPTION Ancient Greeks Used scytale to encrypt their messages Caesar’s Cipher Shifted letters left or right by a certain number of characters WWII Enigma machine Cracked by the Polish Modern Encryption Symmetric encryption Asymmetric encryption

5 EXAMPLE OF ENCRYPTION

6 SSL Secure Sockets Layer Establishes an encrypted link between the browser and the website Used to secure transactions, logins, and data transfers Ensures data is private and integral Prevents eavesdropping

7 SSL CERTIFICATES Also known as Digital Certificates Used to establish a secure encrypted connection between browser and server Three keys Public Private Session Anything encrypted with the public key can only be decrypted with the private key

8 KEYS Public key - A publicly viewable key Private key - Only viewable by the owner Encrypting and decrypting take a lot of processing power Creates a symmetric session key during “SSL Handshake” The session key is used to encrypt all transmitted data

9 HOW TO GET A SSL CERTIFICATE Create a Certificate Signing Request on your server Creates a private key and public key on your server Install the SSL Certificate on your server Digitally signed by a trusted Certificate Authority DigiCert GoDaddy Pay $300 annual fee

10 CERTIFICATE AUTHORITY Entity that issues digital certificates Responsible for making sure website is valid Top Certificate Authorities by market share, 2016 Comodo - 40% Symantic - 26% GoDaddy - 11% GlobalSign - 9%

11 SSL HOW IT WORKS

12 MAN IN THE MIDDLE ATTACKS Also referred to as MITM or MIM Cyber attack where a malicious actor places themselves into a conversation Tries to impersonate both parties to gain information Might happen on Financial sites Connections meant to be secured by public or private key Sites that require login where there is information to be gained

13 MAN IN THE MIDDLE ATTACKS

14 OTHER FORMS OF MITM ATTACKS Evil Twin Rogue wifi network that appears to be legitimate When the user joins the attacker uses a MITM attack to intercept data Sniffing Uses software to intercept data being sent from, or to, your device

Download ppt "ENCRYPTION, SSL, CERTIFICATES RACHEL AKISADA & MELANIE KINGSLEY."

Similar presentations

Cryptography Chapter 7 Part 4 Pages 833 to 874. PKI Public Key Infrastructure Framework for Public Key Cryptography and for Secret key exchange.

Cryptography Chapter 7 Part 4 Pages 833 to 874. PKI Public Key Infrastructure Framework for Public Key Cryptography and for Secret key exchange.
Cryptography and Network Security

Cryptography and Network Security
SSL CS772 Fall 2011. Secure Socket layer Design Goals: SSLv2) SSL should work well with the main web protocols such as HTTP. Confidentiality is the top.

SSL CS772 Fall Secure Socket layer Design Goals: SSLv2) SSL should work well with the main web protocols such as HTTP. Confidentiality is the top.
Topic 8: Secure communication in mobile devices. Choice of secure communication protocols, leveraging SSL for remote authentication and using HTTPS for.

Topic 8: Secure communication in mobile devices. Choice of secure communication protocols, leveraging SSL for remote authentication and using HTTPS for.
Lori Fitterling LI843 SSL Secured Sockets Layer. What is Secure Sockets Layer (SSL)? It is protection of data transferred over the Internet using encryption.

Lori Fitterling LI843 SSL Secured Sockets Layer. What is Secure Sockets Layer (SSL)? It is protection of data transferred over the Internet using encryption.
By: Hassan Waqar.  A PROTOCOL for securely transmitting data via the internet.  NETWORK LAYER application.  Developed by NETSCAPE.

By: Hassan Waqar.  A PROTOCOL for securely transmitting data via the internet.  NETWORK LAYER application.  Developed by NETSCAPE.
Encryption, SSL and Certificates BY JOSHUA COX AND RACHAEL MEAD.

Encryption, SSL and Certificates BY JOSHUA COX AND RACHAEL MEAD.
SECURITY IN E-COMMERCE VARNA FREE UNIVERSITY Prof. Teodora Bakardjieva.

SECURITY IN E-COMMERCE VARNA FREE UNIVERSITY Prof. Teodora Bakardjieva.
1 Supplement III: Security Controls What security services should network systems provide? Confidentiality Access Control Integrity Non-repudiation Authentication.

1 Supplement III: Security Controls What security services should network systems provide? Confidentiality Access Control Integrity Non-repudiation Authentication.
Http Web Authentication Web authentication is used to verify a users identity before allowing access to certain web pages On web browsers you get a login.

Http Web Authentication Web authentication is used to verify a users identity before allowing access to certain web pages On web browsers you get a login.
Mar 19, 2002Mårten Trolin1 This lecture On the assignment Certificates and key management SSL/TLS –Introduction –Phases –Commands.

Mar 19, 2002Mårten Trolin1 This lecture On the assignment Certificates and key management SSL/TLS –Introduction –Phases –Commands.
Mar 12, 2002Mårten Trolin1 This lecture Diffie-Hellman key agreement Authentication Certificates Certificate Authorities SSL/TLS.

Mar 12, 2002Mårten Trolin1 This lecture Diffie-Hellman key agreement Authentication Certificates Certificate Authorities SSL/TLS.
Client/Server Computing Model of computing in which very powerful personal computers (clients) are connected in a network with one or more server computers.

Client/Server Computing Model of computing in which very powerful personal computers (clients) are connected in a network with one or more server computers.
Security Overview Hofstra University University College for Continuing Education - Advanced Java Programming Lecturer: Engin Yalt May 24, 2006.

Security Overview Hofstra University University College for Continuing Education - Advanced Java Programming Lecturer: Engin Yalt May 24, 2006.
1 Encryption What is EncryptionWhat is Encryption Types of EncryptionTypes of Encryption.

1 Encryption What is EncryptionWhat is Encryption Types of EncryptionTypes of Encryption.
Encryption An Overview. Fundamental problems Internet traffic goes through many networks and routers Many of those networks are broadcast media Sniffing.

Encryption An Overview. Fundamental problems Internet traffic goes through many networks and routers Many of those networks are broadcast media Sniffing.
EECC694 - Shaaban #1 lec #16 Spring2000 5-4-2000 Properties of Secure Network Communication Secrecy: Only the sender and intended receiver should be able.

EECC694 - Shaaban #1 lec #16 Spring Properties of Secure Network Communication Secrecy: Only the sender and intended receiver should be able.
Chapter Extension 23 SSL/TLS and //https © 2008 Pearson Prentice Hall, Experiencing MIS, David Kroenke.

Chapter Extension 23 SSL/TLS and //https © 2008 Pearson Prentice Hall, Experiencing MIS, David Kroenke.
SSL By: Anthony Harris & Adam Shkoler. What is SSL? SSL stands for Secure Sockets Layer SSL is a cryptographic protocol which provides secure communications.

SSL By: Anthony Harris & Adam Shkoler. What is SSL? SSL stands for Secure Sockets Layer SSL is a cryptographic protocol which provides secure communications.
Web services security I

Web services security I

Similar presentations

Ads by Google