Using SSL/TLS - Thomas Herlea

This lecture goes beyond the basics of cryptographic primitives, public key infrastructures and the SSL/TLS protocol, and builds on these foundations for learning how to deploy SSL/TLS in applications. Implementing secure communications with SSL/TLS requires attention when configuring SSL/TLS, when setting up the SSL/TLS session and attention to aspects of application session management. Learning objectives + being exposed to example source code that sets up an SSL session, + preparing a certificate with open source tools, + avoiding certain pitfalls when working with SSL programmatically. The lecture was delivered by Thomas Herlea at SecAppDev 2013 in Leuven, Belgium. Thomas Herlea is an IT security consultant specialized in application security. He performs vulnerability assessments and consults on secure development with the Trasys Group. Previously, he was employed by Verizon Business. Thomas is an alumnus of the COSIC research group and an active member of OWASP and ISSA-BE.