HTTPS? Yes, please.
-
Upload
sitegroundcom -
Category
Technology
-
view
209 -
download
0
Transcript of HTTPS? Yes, please.
![Page 1: HTTPS? Yes, please.](https://reader035.fdocuments.us/reader035/viewer/2022062503/5888eb151a28ab87728b589b/html5/thumbnails/1.jpg)
HTTPS? YES, PLEASE.
J and Beyond 2016
Kiril Hristov @kirilhristov
![Page 2: HTTPS? Yes, please.](https://reader035.fdocuments.us/reader035/viewer/2022062503/5888eb151a28ab87728b589b/html5/thumbnails/2.jpg)
UX Tech
Business
![Page 3: HTTPS? Yes, please.](https://reader035.fdocuments.us/reader035/viewer/2022062503/5888eb151a28ab87728b589b/html5/thumbnails/3.jpg)
STATE OF ENCRYPTION
online store, banks and others that
transmit sensitive data
art blog, tech site, brochure website and others that
seem harmless
![Page 4: HTTPS? Yes, please.](https://reader035.fdocuments.us/reader035/viewer/2022062503/5888eb151a28ab87728b589b/html5/thumbnails/4.jpg)
LET’S FREAK OUTReason 1: Privacy
![Page 5: HTTPS? Yes, please.](https://reader035.fdocuments.us/reader035/viewer/2022062503/5888eb151a28ab87728b589b/html5/thumbnails/5.jpg)
NETWORK SNIFFING
![Page 6: HTTPS? Yes, please.](https://reader035.fdocuments.us/reader035/viewer/2022062503/5888eb151a28ab87728b589b/html5/thumbnails/6.jpg)
NETWORK SNIFFING
![Page 7: HTTPS? Yes, please.](https://reader035.fdocuments.us/reader035/viewer/2022062503/5888eb151a28ab87728b589b/html5/thumbnails/7.jpg)
WIFI PROBLEMS• We use unsecured
networks• Passwords are
crackable
![Page 8: HTTPS? Yes, please.](https://reader035.fdocuments.us/reader035/viewer/2022062503/5888eb151a28ab87728b589b/html5/thumbnails/8.jpg)
SSL• You are talking to who they
claim to be.
• No one can see the conversation.
• No one has tampered with the data.
![Page 9: HTTPS? Yes, please.](https://reader035.fdocuments.us/reader035/viewer/2022062503/5888eb151a28ab87728b589b/html5/thumbnails/9.jpg)
![Page 10: HTTPS? Yes, please.](https://reader035.fdocuments.us/reader035/viewer/2022062503/5888eb151a28ab87728b589b/html5/thumbnails/10.jpg)
HOW SSL WORKS
![Page 11: HTTPS? Yes, please.](https://reader035.fdocuments.us/reader035/viewer/2022062503/5888eb151a28ab87728b589b/html5/thumbnails/11.jpg)
Client Server
private
public
RNc
Client hello, SSL session request, RNcRNc
RNc
RNs
Server hello, sends over SSL cert, Public Key, RNs
RNspublic
RNspublic
PMSc PMSc, encrypted with the Public KeyPMSc PMSc
MSMS
Each side calculates the MS, starts using it for secure communicationMS MS
![Page 12: HTTPS? Yes, please.](https://reader035.fdocuments.us/reader035/viewer/2022062503/5888eb151a28ab87728b589b/html5/thumbnails/12.jpg)
HTTP2Reason 2: Speed
![Page 13: HTTPS? Yes, please.](https://reader035.fdocuments.us/reader035/viewer/2022062503/5888eb151a28ab87728b589b/html5/thumbnails/13.jpg)
HTTP2• Need SSL to run http2
• Faster site performance (multiplexing, header compression, server push)
• Easy implementation when web host supports it
![Page 14: HTTPS? Yes, please.](https://reader035.fdocuments.us/reader035/viewer/2022062503/5888eb151a28ab87728b589b/html5/thumbnails/14.jpg)
DEMO TIME
![Page 15: HTTPS? Yes, please.](https://reader035.fdocuments.us/reader035/viewer/2022062503/5888eb151a28ab87728b589b/html5/thumbnails/15.jpg)
HTTP1.1 HTTP 2
bit.ly/testhttp2
![Page 16: HTTPS? Yes, please.](https://reader035.fdocuments.us/reader035/viewer/2022062503/5888eb151a28ab87728b589b/html5/thumbnails/16.jpg)
IT’S GOOD FOR SEOReason 3: Rank Higher
![Page 17: HTTPS? Yes, please.](https://reader035.fdocuments.us/reader035/viewer/2022062503/5888eb151a28ab87728b589b/html5/thumbnails/17.jpg)
LET’S ENCRYPTReason 4: It’s Free
![Page 18: HTTPS? Yes, please.](https://reader035.fdocuments.us/reader035/viewer/2022062503/5888eb151a28ab87728b589b/html5/thumbnails/18.jpg)
• Free Security
• Easy Installation bit.ly/encrypt4free
• No Dedicated IP Required
• Trusted by all Major Browsers
• Auto Renewable
![Page 19: HTTPS? Yes, please.](https://reader035.fdocuments.us/reader035/viewer/2022062503/5888eb151a28ab87728b589b/html5/thumbnails/19.jpg)
IMPLEMENTATION
![Page 20: HTTPS? Yes, please.](https://reader035.fdocuments.us/reader035/viewer/2022062503/5888eb151a28ab87728b589b/html5/thumbnails/20.jpg)
1. Get a certificate
2. Configure your server bit.ly/hardwayssl
3. Configure your site (Joomla!)
4. Test the configuration ssllabs.com
![Page 21: HTTPS? Yes, please.](https://reader035.fdocuments.us/reader035/viewer/2022062503/5888eb151a28ab87728b589b/html5/thumbnails/21.jpg)
GLOBAL CONFIGURATION -> SERVER -> FORCE SSL : ENTIRE SITE
![Page 22: HTTPS? Yes, please.](https://reader035.fdocuments.us/reader035/viewer/2022062503/5888eb151a28ab87728b589b/html5/thumbnails/22.jpg)
MODULE MANAGER -> LOGIN FORM -> ENCRYPT LOGIN FORM:YES
![Page 23: HTTPS? Yes, please.](https://reader035.fdocuments.us/reader035/viewer/2022062503/5888eb151a28ab87728b589b/html5/thumbnails/23.jpg)
TEST THE CONFIGURATION SSLLABS.COM
![Page 24: HTTPS? Yes, please.](https://reader035.fdocuments.us/reader035/viewer/2022062503/5888eb151a28ab87728b589b/html5/thumbnails/24.jpg)
FIX MIXED CONTENT
bit.ly/mixedcontentcheck
![Page 25: HTTPS? Yes, please.](https://reader035.fdocuments.us/reader035/viewer/2022062503/5888eb151a28ab87728b589b/html5/thumbnails/25.jpg)
QUESTIONS? YES, PLEASE.
Kiril Hristov @kirilhristov