图书标签: SSL 网络安全 TLS 软件开发 计算机网络 计算机 程序设计 程序世界
发表于2024-11-05
SSL & TLS Essentials pdf epub mobi txt 电子书 下载 2024
"Great writing . . . a clear introduction to the most widely deployed security technology in the Internet."-Paul Lambert, former co-chair of IETF IPSEC working group
The Secure Sockets Layer (SSL) and Transport Layer Security(TLS) protocols form the foundation for e-commerce security on the World Wide Web, verifying the authenticity of Web sites, encrypting the transfer of sensitive data, and ensuring the integrity of information exchanged. Now-for the first time the details of these critical security protocols are available in a complete, clear, and concise reference. SSL and TLS Essentials provides complete documentation of the SSL and TLS protocols, including advanced and proprietary extensions never before published. The book thoroughly covers the protocols in operation, including the contents of their messages, message formats, and the cryptographic calculations used to construct them. The text also includes an introduction to cryptography and an explanation of X.509 public key certificates. Stephen Thomas, author of IPng and the TCP/IP Protocols, presents this complex material in a clear and reader-friendly manner. The book includes more than 80 figures and illustrations to supplement its text, and it describes SSL in the context of real-world, practical applications. Readers will immediately understand not only the academic principles behind he security protocols, but how those principles apply to their own network security challenges.
The book includes:
* Full details of Netscape's SSL and the IETF's TLS protocols, with differences between the two clearl highlighted and explained
* A concise tutorial in cryptography
* Complete coverage of Netscape's International Step-Up and Microsoft's Server Gated Cryptography implementations
* A description of X.509 public key certificates
* Details on implementing backwards compatibility among previous versions of SSL and TLS
* A thorough security checklist with explanations of all known attacks on SSL implementations, along with appropriate countermeasures.
The CD-ROM contains convenient electronic versions of the book for:
* Windows(r) CE handheld computers
* Adobe(r) Acrobat Reader for PCs
Visit our Web site at www.wiley.com/compbooks/
虽然只看了一本,看是感觉很不错!
评分书不错,接下来有时间结合RFC文档再多些了解。
评分书不错,接下来有时间结合RFC文档再多些了解。
评分ssl相关的书籍本来就不多,这本还行吧
评分不仅仅介绍协议,还包括了协议安全设计的几种方式密码学原理等内容。但一半是周边知识的介绍,一半是SSL/TLS本身。
1. 可以伪造一个公钥发放者啊。 由于是客户端访问服务器,所以伪造也没用,除非把域名变了,比如墙了GOOGLE,你是一会google 2. 分级有什么用。 3. 证书收回既然不是SSL所关心的内容,是不是就不安全了?
评分1. 可以伪造一个公钥发放者啊。 由于是客户端访问服务器,所以伪造也没用,除非把域名变了,比如墙了GOOGLE,你是一会google 2. 分级有什么用。 3. 证书收回既然不是SSL所关心的内容,是不是就不安全了?
评分1. 可以伪造一个公钥发放者啊。 由于是客户端访问服务器,所以伪造也没用,除非把域名变了,比如墙了GOOGLE,你是一会google 2. 分级有什么用。 3. 证书收回既然不是SSL所关心的内容,是不是就不安全了?
评分1. 可以伪造一个公钥发放者啊。 由于是客户端访问服务器,所以伪造也没用,除非把域名变了,比如墙了GOOGLE,你是一会google 2. 分级有什么用。 3. 证书收回既然不是SSL所关心的内容,是不是就不安全了?
评分1. 可以伪造一个公钥发放者啊。 由于是客户端访问服务器,所以伪造也没用,除非把域名变了,比如墙了GOOGLE,你是一会google 2. 分级有什么用。 3. 证书收回既然不是SSL所关心的内容,是不是就不安全了?
SSL & TLS Essentials pdf epub mobi txt 电子书 下载 2024