TLS Cryptography In-Depth: Explore the intricacies of modern cryptography and the inner workings of TLS


TLS Cryptography In-Depth: Explore the intricacies of modern cryptography and the inner workings of TLS
Author: Dr. Paul Duplys (Author), Dr. Roland Schmitz (Author)
Publisher finelybook 出版社: Packt Publishing
Publication Date 出版日期: 2024-01-29
Language 语言: English
Print Length 页数: 712 pages
ISBN-10: 1804611956
ISBN-13: 9781804611951


Book Description
By finelybook

A practical introduction to modern cryptography using the Transport Layer Security protocol as the primary reference

Key Features

  • Learn about real-world cryptographic pitfalls and how to avoid them
  • Understand past attacks on TLS, how these attacks worked, and how they were fixed
  • Discover the inner workings of modern cryptography and its application within TLS
  • Purchase of the print or Kindle book includes a free PDF eBook


Book Description
By finelybook

TLS is the most widely used cryptographic protocol today, enabling e-commerce, online banking, and secure online communication. TLS Cryptography in Depth will help you gain a deep understanding of how and why TLS works, how past attacks on TLS were possible, and how vulnerabilities that enabled them were addressed in the latest TLS version 1.3. By exploring the inner workings of TLS, you’ll be able to configure it and use it more securely.

Starting with the basic concepts, you’ll be led step by step through the world of modern cryptography, guided by the TLS protocol. As you advance, you’ll be learning about the necessary mathematical concepts from scratch. Even seemingly arcane topics such as public-key cryptography based on elliptic curves will be explained with a view on real-world applications in TLS. With easy-to-understand concepts, you’ll find out how secret keys are generated and exchanged in TLS, and how they are used to create a secure channel between a client and a server.

By the end of this book, you’ll have understood the inner workings of TLS and how to configure TLS servers securely. Moreover, you’ll have gained a deep knowledge of the cryptographic primitives that make up TLS and will be able to apply this knowledge in other security-related contexts.

What you will learn

  • Understand TLS principles and protocols for secure internet communication
  • Find out how cryptographic primitives are used within TLS V1.3
  • Discover best practices for secure configuration and implementation of TLS
  • Evaluate and select appropriate cipher suites for optimal security
  • Get an in-depth understanding of common cryptographic vulnerabilities and ways to mitigate them
  • Explore forward secrecy and its importance in maintaining confidentiality
  • Understand TLS extensions and their significance in enhancing TLS functionality

Who this book is for

This book is for IT professionals, cybersecurity professionals, security engineers, cryptographers, software developers, and administrators looking to gain a solid understanding of TLS specifics and their relationship with cryptography. This book can also be used by computer science and computer engineering students to learn about key cryptographic concepts in a clear, yet rigorous way with its applications in TLS. There are no specific prerequisites, but a basic familiarity with programming and mathematics will be helpful.


Table of Contents

  1. The Role of Cryptography in the Connected World
  2. Secure Channel and the CIA Triad
  3. A Secret to Share
  4. Encryption and Decryption
  5. Entity Authentication
  6. Transport Layer Security at a Glance
  7. Public-Key Cryptography
  8. Elliptic Curves
  9. Digital Signatures
  10. Digital Certificates and Certification Authorities
  11. Hash Functions and Message Authentication Codes
  12. Secrets and Keys in TLS 1.3
  13. TLS Handshake Protocol Revisited
  14. Block Ciphers and Their Modes of Operation
  15. Authenticated Encryption
  16. The Galois Counter Mode
  17. TLS Record Protocol Revisited
  18. TLS Cipher Suites
  19. Attacks on Cryptography
  20. Attacks on the TLS Handshake Protocol
  21. Attacks on the TLS Record Protocol
  22. Attacks on TLS Implementations

About the Author

Dr. Paul Duplys is a security researcher and lead of the “security, privacy & safety” research program at Corporate Research division of Robert Bosch GmbH, the world’s largest Tier-1 automotive supplier and manufacturer of industrial, residential and consumer goods. Paul has been doing applied research in various fields of information security since 2007. His current research interests include security automation, software security, network security, intrusion detection & honeypots, AI applications for security and security of AI, privacy engineering and privacy preserving technologies. Paul holds a PhD degree in computer science from the University of Tuebingen.
Dr. Roland Schmitz has been a professor for Internet security at the Stuttgart Media University (HdM) since 2001. Prior to joining HdM, from 1995 to 2001, he worked as a research engineer at Deutsche Telekom, with a focus on mobile security and digital signature standardisation. At HdM, Roland teaches courses on Internet security, system security, security engineering, digital rights management, theoretical computer science, discrete mathematics and game physics. He has published many scientific papers in the fields of Internet and Multimedia Security. Moreover, he authored and co-authored several books. Roland holds a PhD degree in mathematics from Technical University Braunschweig.

Amazon page

相关文件下载地址

打赏
未经允许不得转载:finelybook » TLS Cryptography In-Depth: Explore the intricacies of modern cryptography and the inner workings of TLS

评论 抢沙发

觉得文章有用就打赏一下

您的打赏,我们将继续给力更多优质内容

支付宝扫一扫

微信扫一扫