Hansel and Gretel do TLS – faster and more secure
Effective encryption is a vital component of a safe and secure internet, especially since the arrival of HTTP/2. Many sites and mobile apps still don’t use TLS to encrypt their traffic, often citing some kind of fear over the complexity of it all, or if they do, they make a mess of it, resulting in a literal false sense of security.
The basics of TLS encryption are straightforward, but the practical realities run into a bewildering forest of acronyms. This talk gives you a breadcrumb trail through the backwoods of TLS, OCSP, ECDHE, ALPN, HTTP/2, HSTS, HPKP, CT, and more, including the latest changes in TLS 1.3.
You’ll get an overview of what problems TLS solves, how it works, its component pieces, how they fit together, where vulnerabilities and mitigations apply, and what tools and resources can help you get up to speed.
Marcus Bointon, when not working on smartmessages.net, supporting 1CRM at syniah.com, writing and pentesting for Radically Open Security or acting as a DPO, is the maintainer of PHPMailer, a top-10 PHP project on GitHub, and probably the world’s most popular email sending code. He’s a contributor to many other open-source projects and wrote the HTML5 email address spec. He’s an accomplished PHP coder, Linux sysadmin, technical writer and MySQL DBA. He’s also a strong advocate of digital rights and privacy – he loves GDPR! – and has been speaking at technical conferences in Europe and around the world since 2006. He lives in the French alps with his wife, kids, cat, guitars, bikes and far too many skis.