SSL

Secure Sockets Layer, protocol for encrypting data between the Web Browser and the Web Server.

http://www.openssl.org/

http://www.apache-ssl.org/

https://konklone.com/post/switch-to-https-now-for-free

Dec'2016: Within one year, Let's Encrypt has become one of the largest Certificate Authoritys on the Internet.

Nov'2014: why it's overdue: If you run a news site, or any site at all, we’d like to issue a friendly challenge to you. Make a commitment to have your site fully on https by the end of 2015 and pledge your support with the hashtag #https2015.

Dec'2012 recommendations from some friends - note this is relevant to many-server environment

Ian Grigg challenge to the Threat Model behind SSL. Commentary by Tim Oren and Charles Miller

  • Terminate in (Load Balancing) hardware? See comments for interesting issues....

Historically, SSL has been considered expensive, and handled in separate computers with specialized accelerating hardware.

  • Jun'2010 - Google has been able to implement SSL widely but cheaply. (But not simply.)

Python links:

HeartBleed is a security bug disclosed in April 2014 in the OpenSSL cryptography library, which is a widely used implementation of the Transport Layer Security (TLS) protocol. Heartbleed may be exploited regardless of whether the party using a vulnerable OpenSSL instance for TLS is a server or a client.


Edited: |

blog comments powered by Disqus