Spend two days to understand both the theory and practice of SSL/TLS and Internet PKI. Designed by the author of the much acclaimed Bulletproof SSL and TLS, this practical training course will teach you how to deploy secure servers and encrypted web applications and understand both the theory and practice of Internet PKI.
On day 1, we’ll focus on what you need in your daily work to deliver best security, availability and performance. And you will learn how to get an A+ on SSL Labs! On day 2, we will start with the basics and the theory, then discuss how the PKI is implemented in the real world, and finish with a practical example of a realistic private certification authority.
Day 1: The Best TLS Training in the World
1. Introduction
2. Keys and certificates
3. Protocols and cipher suites
4. HTTPS topics
5. Putting it all together: Getting A+ in SSL Labs
1. Introduction
2. Standards
3. Internet PKI
4. Revocation
5. Defenses
6. Certificate Transparency
7. PKI ecosystem monitoring
8. Project: Building and deploying a realistic private CA
We will also provide you with many additional exercises that you can work on in your own time. You'll be able to ask us for help via email. And if you're already familiar with the basics, we'll challenge you with some of the advanced exercises on the day.
Computer setup:
Attendees will need to bring a computer with the following software installed:
Scott Helme is a security researcher, consultant and international speaker. He can often be found talking about web security and performance online and helping organisations better deploy both.
Founder of report-uri.io, a free CSP report collection service, and securityheaders.io, a free security analyser, Scott has a tendency to always be involved in building something new and exciting.