Overview
Explore the 25-year evolution of encryption on the web in this comprehensive NDC Conferences talk. Delve into the history of Secure Sockets Layer (SSL), examining past challenges, recent advancements, and potential future developments. Learn about the importance of encryption for privacy, the shift in industry attitudes, and the impact of major players like Google and Firefox. Analyze SSL progress reports, independent data sources, and the reasons behind the push for widespread HTTPS adoption. Discuss common arguments against HTTPS, debunk misconceptions about privacy, and understand the technical aspects of HTTP encryption. Gain insights into the latest TLS 1.3 standard and its implications for web security. Conclude with a look at SSL Labs and corporate SSL termination practices, equipping you with a thorough understanding of the past, present, and future of web encryption.
Syllabus
Introduction
Netscape
TLS Versions
Crawler Ninja
SSL Progress Report
Independent Data Sources
A Big Shift in the Industry
Netcraft Study
SSL Complaints
What Happened
Google
GetSafeOnline
Check Engine Light
Chrome
Firefox
SpaceX
Elon Musk
Encryption
Why do you need encryption
Encryption provides privacy
What do you have to hide
You have nothing to fear
You dont care about privacy
Summary
Anti HTTPS
Secure vs Unsecure
How to read encrypted messages
HTTP Encryption
Why TLS 13
End of HTTP
SSL Labs
Corporate Termination
Taught by
NDC Conferences