Certificates of Authority: Do you really understand how SSL / TLS works?

preview_player
Показать описание
The Internet would be unusable without certificates and Certificates of Authority. If CAs got comprised or their private keys got stolen, we would be in big trouble.

Warning! We go deep in this video and explain why certificates are critical to your online life and the Internet. This is a technical deep dive and covers a lot of detail.

// Ed's TLS course //
Use coupon code: "BombalTLS" to get the course for $49

// Videos mentioned //

// Websites mentioned //

// MENU //
00:00 - Coming up
00:55 - Intro
01:00 - SSL Certificates
01:55 - How to validate website certificates
05:05 - Why certificates are important
08:10 - What is a CA? // Explanation of the Cerificate Authority
12:35 - Certificate chain
15:00 - Inspecting certificates
22:42 - Inspecting certificates // RSA Public-Keys
26:26 - Inspecting certificates // Extensions
28:07 - Wildcard certificates
29:20 - Inspecting certificates // Extensions (cont'd)
36:02 - Inspecting certificates
43:19 - Learn more about SSL/TLS
44:47 - Closing thoughts // TLS in the fututre

// Ed's SOCIAL //

// David's SOCIAL //

// Ed's TLS course //

Use coupon code: "BombalTLS" to get the course for $49

// More detail on Ed's YouTube channel and website //
Asymmetric Encryption explained from a Practical Perspective:

RSA Algorithm:

DH Algorithm:

Practical TLS - Crypto & SSL/TLS foundation:

// MY STUFF //

// SPONSORS //

tls
tls decryption
twitter
ssl
ca
certificate of authority
cert
certificate
verisign
twitter
crypto
cryptography
ssl decryption
tls wireshark
tls decryption wireshark
tls tunnel
tls handshake
tlsp
tls explained
tls tunnel
vpn
tls protocol
tls handshake explained
tls 1.3
TLS
Transport Layer Security
Handshake
TLS Handshake
Crypto
Cryptography
security
wireshark
wireshark tutorial
wireshark packet analysis
tls decryption
tls decryption wireshark
tls 1.3 decryption
tls decryption wireshark
tls tunnel vpn free internet
tls decryption palo alto

Please note that links listed may be affiliate links and provide me with a small percentage/kickback should you use them to purchase any of the items listed or recommended. Thank you for supporting me and this channel!

#tls #ssl #wireshark
Рекомендации по теме
Комментарии
Автор

The Internet would be unusable without certificates and Certificates of Authority. If CAs got comprised or their private keys got stolen, we would be in big trouble.

Warning! We go deep in this video and explain why certificates are critical to your online life and the Internet. This is a technical deep dive and covers a lot of detail.

// Ed's TLS course //
Use coupon code: "BombalTLS" to get the course for $49

// Videos mentioned //

// Websites mentioned //

// MENU //
00:00 - Coming up
00:55 - Intro
01:00 - SSL Certificates
01:55 - How to validate website certificates
05:05 - Why certificates are important
08:10 - What is a CA? // Explanation of the Cerificate Authority
12:35 - Certificate chain
15:00 - Inspecting certificates
22:42 - Inspecting certificates // RSA Public-Keys
26:26 - Inspecting certificates // Extensions
28:07 - Wildcard certificates
29:20 - Inspecting certificates // Extensions (cont'd)
32:07 - Testing certificates // badssl.com
36:02 - Inspecting certificates
43:19 - Learn more about SSL/TLS
44:47 - Closing thoughts // TLS in the fututre

// Ed's SOCIAL //

// David's SOCIAL //

// Ed's TLS course //

Use coupon code: "BombalTLS" to get the course for $49

// More detail on Ed's YouTube channel and website //
Asymmetric Encryption explained from a Practical Perspective:

RSA Algorithm:

DH Algorithm:

Practical TLS - Crypto & SSL/TLS foundation:

// MY STUFF //

// SPONSORS //

Please note that links listed may be affiliate links and provide me with a small percentage/kickback should you use them to purchase any of the items listed or recommended. Thank you for supporting me and this channel!

davidbombal
Автор

The analysis of the certificates and (more in general) the care with which you bring this content trying to bring disclosure on these topics is really admirable.
Thank you very much David, we could use more people like you in the world.
An Italian software engineer - 🇮🇹

nFire
Автор

Yes hermano ... Please invite Ed back to go "deep deep deep" into RSA and Diffie-Hellman. Both of you have a great tech presence and chemistry with elucidating the behind the scenes stuff-- in this case with the inner workings of SSL/TLS. Thanks David, your content is always of the highest caliber!

techfixer
Автор

It's a real pleasure to see these gurus being cooperated. I just love your courses! you're the best!

olegserov
Автор

I see David Bombal Getting much fans here in India as well... Namastey 🙏
Love from India ❤️

Shubham-Mishra
Автор

I like the way David feigns ignorance in order to elicit a more detailed explanation 👍

Cochise
Автор

i learned so much from his handshake video and cory's videos. The Wireshark videos you do with ed and chris are so informative i hope you keep them up . Gotta love cory she's the best i hope you do more with her also. i have to say the people you show on your channel are the best in the buisness

MFoster
Автор

Yes please. I have a basic understanding of RSA and Diffie Hellman but going deep would be fun. When I explain DH I use the glasses and colored water explanation. With RSA I always explain it the same way you guys did here but I don't really understand how the math works beyond it is a remainder of a whole number from division.

rationalbushcraft
Автор

Ed always take complex topic and make it easier for the audience to understand . David you always rock as you do in the past and i appreciate it

manigandansrinivasan
Автор

Huge thanks to Sir David and Ed. I feel safe and blessed to have people like you. ❤

MohitKhare
Автор

Such a good explanation!!! As a network engineer we issue and renew ssl certificates everyday for bank domains and just 1 certificate costs $300

Memespark
Автор

Excellent interview. Thank you both for your time and effort! Deep dive on Encryption protocols like RSA, DH, etc. would be greatly appreciated.

vyasG
Автор

This is awesome! I loved this video and look forward to taking Ed's course as well. Thank you!

robannmateja
Автор

Excellent and valuable content. Great explanation with marvellous deep-dive examples. I don't have been interested in stuff around certificates, but this video truly caught me up.

noizzy
Автор

Hey David! First Comment!! BTW, the stuff you do is really great and I particularly liked the series of videos on Flipper Zero!

gddaredevil
Автор

I took Ed's courses following the 1st time you made a collab with him and he doesn't disappoint. He even does live sessions for the newly added TLS1.3 content before he puts it into an actual online course - which is awesome because we get to ask questions. My next course with him is tomorrow actually. Great content but I mainly want to thank you for your great relevant content and putting Ed on my professional path. Like anybody here probably, I get most of my learning from free online resources as one should but Ed's course is one of the very few I consider being way above what you find for free online to easily make it worth what I consider a small price. This is content and expertise I have zero problem paying for as it translates into a big investment in myself as an IT professional.

rockdarko
Автор

"Quantum Cryptography is closer than ever"
"Well yea, that's how time works" ;)
25:38

PracticalNetworking
Автор

Waiting for your New year resolutions video David sir.
Expecting cool stuff

vardhangoud
Автор

Wow!!! What a great great session this was! Thanks for this Dave

MrNightowl
Автор

This will be a great visual, to what I just read about the certificate process, in my Sec+ study guide. Have a lab to do- How to steal certificates. So many of your videos to catch up on.

letsgetteched