SlideShare a Scribd company logo

JoomlaDay Austria 2016 - Presentation Why and how to use HTTPS on your website!

Download as PPTX, PDF
Wilco Alsemgeest
Wilco Alsemgeest

Why should you use HTTPS and how can you use this? These are the two most important questions when thinking about secure communication between the visitors and your website. This is exactly what the presentation was about. What is HTTPS? How does the basics work? What do I to know about it? How does it work with Joomla! ? Presentation was given at the JoomlaDay in Austria December 2016, to different kind of Joomla! users, from beginners to developers.

Internet
1 of 22
Why and how to use HTTPS on your website!
HTTPS • Senior Windows System engineer at ORTEC B.V. • Regional Coordinator – Joomla Certification Program for the Joomla User groups in the Netherlands • Owner Connecting Connections – Since Mambo working with and for Joomla! – Extension translator RSJoomla!, Hikashop, Freestyle-Joomla – Organizer/Supporter many different Joomla! events. Wilco Alsemgeest https://twitter.com/conconnl https://twitter.com/conconnl https://www.facebook.com/conconnl/
HTTPS  Principles of TLS / SSL  Obtaining an SSL Certificate  Which SSL Certificates are available?  What do I need for this?  How to get one?  How much time does it take?  Implementation and Maintenance  Good to know!  Joomla! and HTTPS
HTTPS  Definitions  What is TLS / SSL?  What are certificates?  Why is HTTPS necessary?  How is the secure connection created?  What are the dependencies? Principles of TLS / SSL
HTTPS  DNS – Domain Name System  TLS / SSL – Transport Layer Security – Secure Sockets Layer (Predecessor)  CA – Certificate Authority  (Sub) Domain name (TLD) Principles of TLS / SSL Definitions
HTTPS Transport Layer Security (TLS) and its predecessor Secure Sockets Layer (SSL), Are standard cryptographic protocols for providing secure communication between supplier and client. Principles of TLS / SSL What is TLS / SSL?
HTTPS All browsers have the capability to interact with web servers using the TLS / SSL Protocol. For that, the browser needs an Root CA Public SSL Certificate (Pre-Installed) and the server needs an SSL Certificate issued by a Root CA to be able to establish a secure connection. Principles of TLS / SSL What are certificates?
HTTPS Websites that use an SSL Certificate can be recognized by the use of the HTTPS protocol instead of HTTP. The “S” stands for Secure, which means encrypted by both the client browser and web server. Because the network traffic is encrypted from start to end there is no possibility to capture (for instance) username and password combinations. Principles of TLS / SSL Why is HTTPS necessary?
HTTPS When a browser attempts to access a website that is secured by TLS, the browser and the web Server establish an TLS connecting using a process called “Handshake”. Essentially, three keys are used to set-up the TLS connection: The public, the private and the session keys. Anything encrypted with the public key can only be decrypted with the private key, and vice versa. Principles of TLS / SSL How is the secure connection created?
HTTPS Principles of TLS / SSL How is the secure connection created?
HTTPS 1. The browser connects with the secured with TLS / SSL (HTTPS) website and asks the server to identify itself. 2. The server sends a copy of de SSL Certificate and Public key. 3. The browser checks the certificate against the list with trusted Certificate Authorities and the date/time validity. The website address is checked with the common name in the certificate. The browser creates a Session Key with the use of the Public Key and sends this to the server. 4. The server decodes Session Key with the Private Key; Sends confirmation encrypted with Session Key back to browser. 5. Server and browser start communicating with all data encrypted with the Session Key. Principles of TLS / SSL How is the secure connection created?
HTTPS SSL certificates are bound to a ‘common name’ registered in the DNS, which is usually a fully qualified domain name but can be a wildcard name (e.g. *.domain.com) Principles of TLS / SSL What are the dependencies?
HTTPS  Which SSL Certificates are available?  Kinds:  Domain name certificates  SAN/UC/Multi-domain certificates  Wildcard certificates  Validation methods:  Domain validation (DV) (For all kinds)  Organization validation (OV) (For all kinds)  Extended validation (EV) (Only for domain and Multi-Domain) Obtaining an SSL Certificate
HTTPS  What do I need for this?  A unique IP address, or Server Name Indication (SNI) functionalities.  Correct contact information in WHOIS database.  Business/Organization validation documents. Obtaining an SSL Certificate
HTTPS  How to get one?  There are different methods for obtaining a certificate all methods result in the same certificate.  An IT partner can help with obtaining the SSL certificate.  It’s possible to obtain a certificate at different suppliers. Root suppliers:  (Market leader)  (Number 2, Market leader)  (Oldest SSL Supplier)  (Fastest growing SSL Supplier) Obtaining an SSL Certificate
HTTPS  How much time does it take? Depending on the type of certificate and the supplier used, it can take from minutes to weeks.  A domain validation certificate takes minutes.  A organization validation certificate can take hours up to days.  A extended validation certificate can take a few days up to a few weeks. Obtaining an SSL Certificate
HTTPS  How do I implement one?  Hosting supplier.  ICT Partner  Hosting control panel (DirectAdmin, Plesk, Cpanel and others)  What maintenance is needed?  Certificate renewal.  Certificate replacement / upgrade. Implementation and Maintenance
HTTPS  SHA-1 encryption is outdated and will display warnings in the browser.  HTTP Strict Transport Security (HSTS)  HTTP/2 (The new internet), most browsers only accept HTTPS with TLS 1.2.  Browsers are going to start warn visitors when the website does not use HTTPS Good to know!
HTTPS  System – Global Configuration – Server – Force HTTPS  .htaccess configuration (Depending on the Hosting supplier) Joomla! & HTTPS
HTTPS
HTTPS HTTP HTTPS
HTTPS

Recommended

Technical SEO
Technical SEOTechnical SEO
Technical SEOAnimon2019
 
Microsoft Exchange Server & SSL Certificates: Everything you need to know
Microsoft Exchange Server & SSL Certificates: Everything you need to knowMicrosoft Exchange Server & SSL Certificates: Everything you need to know
Microsoft Exchange Server & SSL Certificates: Everything you need to knowCheapSSLsecurity
 
Understanding SSL Certificate for Apps by Symantec
Understanding SSL Certificate for Apps by SymantecUnderstanding SSL Certificate for Apps by Symantec
Understanding SSL Certificate for Apps by SymantecCheapSSLsecurity
 
Shift to HTTPS and Save Your Website from the Wrath of Blacklisting
Shift to HTTPS and Save Your Website from the Wrath of BlacklistingShift to HTTPS and Save Your Website from the Wrath of Blacklisting
Shift to HTTPS and Save Your Website from the Wrath of BlacklistingCheapSSLsecurity
 
Ssl Https Server
Ssl Https ServerSsl Https Server
Ssl Https ServerRam Srivastava
 
Https
HttpsHttps
HttpsAcodez IT Solutions
 
Stable proxies it's type and advantages
Stable proxies it's type and advantagesStable proxies it's type and advantages
Stable proxies it's type and advantagesstableproxies
 
SSL f or WordPress Websites
SSL f or WordPress WebsitesSSL f or WordPress Websites
SSL f or WordPress WebsitesPaul Cook
 

Recommended

Technical SEO
Technical SEOTechnical SEO
Technical SEOAnimon2019
 
Microsoft Exchange Server & SSL Certificates: Everything you need to know
Microsoft Exchange Server & SSL Certificates: Everything you need to knowMicrosoft Exchange Server & SSL Certificates: Everything you need to know
Microsoft Exchange Server & SSL Certificates: Everything you need to knowCheapSSLsecurity
 
Understanding SSL Certificate for Apps by Symantec
Understanding SSL Certificate for Apps by SymantecUnderstanding SSL Certificate for Apps by Symantec
Understanding SSL Certificate for Apps by SymantecCheapSSLsecurity
 
Shift to HTTPS and Save Your Website from the Wrath of Blacklisting
Shift to HTTPS and Save Your Website from the Wrath of BlacklistingShift to HTTPS and Save Your Website from the Wrath of Blacklisting
Shift to HTTPS and Save Your Website from the Wrath of BlacklistingCheapSSLsecurity
 
Ssl Https Server
Ssl Https ServerSsl Https Server
Ssl Https ServerRam Srivastava
 
Https
HttpsHttps
HttpsAcodez IT Solutions
 
Stable proxies it's type and advantages
Stable proxies it's type and advantagesStable proxies it's type and advantages
Stable proxies it's type and advantagesstableproxies
 
SSL f or WordPress Websites
SSL f or WordPress WebsitesSSL f or WordPress Websites
SSL f or WordPress WebsitesPaul Cook
 
SSL Certificates and Operations
SSL Certificates and OperationsSSL Certificates and Operations
SSL Certificates and OperationsNisheed KM
 
Paid vs Free SSL Certificates: Which One Should You Pick in 2021?
Paid vs Free SSL Certificates: Which One Should You Pick in 2021?Paid vs Free SSL Certificates: Which One Should You Pick in 2021?
Paid vs Free SSL Certificates: Which One Should You Pick in 2021?RonanMarco1
 
Dev con kolkata 2012 websockets
Dev con kolkata 2012 websocketsDev con kolkata 2012 websockets
Dev con kolkata 2012 websocketsSANKARSAN BOSE
 
K8s rbac-sso
K8s rbac-ssoK8s rbac-sso
K8s rbac-ssoMarc Boorshtein
 
K8s idm-devfest
K8s idm-devfestK8s idm-devfest
K8s idm-devfestMarc Boorshtein
 
Lets Encrypt!
Lets Encrypt!Lets Encrypt!
Lets Encrypt!Joerg Henning
 
Maximizing SPDY and SSL Performance (June 2014)
Maximizing SPDY and SSL Performance (June 2014)Maximizing SPDY and SSL Performance (June 2014)
Maximizing SPDY and SSL Performance (June 2014)Zoompf
 
Ssl pinning and hsts header
Ssl pinning and hsts headerSsl pinning and hsts header
Ssl pinning and hsts headerSaleem M
 
Geek Guide: Apache Web Servers and SSL Authentication
Geek Guide: Apache Web Servers and SSL AuthenticationGeek Guide: Apache Web Servers and SSL Authentication
Geek Guide: Apache Web Servers and SSL AuthenticationRapidSSLOnline.com
 
WordCamp Raleigh 2017 - Move from HTTP to HTTPS or become irrelevant - Peter ...
WordCamp Raleigh 2017 - Move from HTTP to HTTPS or become irrelevant - Peter ...WordCamp Raleigh 2017 - Move from HTTP to HTTPS or become irrelevant - Peter ...
WordCamp Raleigh 2017 - Move from HTTP to HTTPS or become irrelevant - Peter ...Peter LaFond
 
White paper - Full SSL automation with OneClickSSL
White paper - Full SSL automation with OneClickSSLWhite paper - Full SSL automation with OneClickSSL
White paper - Full SSL automation with OneClickSSLGlobalSign
 
Webinar SSL English
Webinar SSL EnglishWebinar SSL English
Webinar SSL EnglishSSL247®
 
Introduction to SSL and How to Exploit & Secure
Introduction to SSL and How to Exploit & SecureIntroduction to SSL and How to Exploit & Secure
Introduction to SSL and How to Exploit & SecureBrian Ritchie
 
Learn to Add an SSL Certificate Boost Your Site's Security.pdf
Learn to Add an SSL Certificate Boost Your Site's Security.pdfLearn to Add an SSL Certificate Boost Your Site's Security.pdf
Learn to Add an SSL Certificate Boost Your Site's Security.pdfReliqusConsulting
 
HTTP vs HTTPS, Do You Really Need HTTPS?
HTTP vs HTTPS, Do You Really Need HTTPS?HTTP vs HTTPS, Do You Really Need HTTPS?
HTTP vs HTTPS, Do You Really Need HTTPS?CheapSSLsecurity
 
Certificate pinning in android applications
Certificate pinning in android applicationsCertificate pinning in android applications
Certificate pinning in android applicationsArash Ramez
 
[Cluj] Turn SSL ON
[Cluj] Turn SSL ON[Cluj] Turn SSL ON
[Cluj] Turn SSL ONOWASP EEE
 
Let's Encrypt + DANE
Let's Encrypt + DANELet's Encrypt + DANE
Let's Encrypt + DANEDeploy360 Programme (Internet Society)
 
Symantec SSL Explained
Symantec SSL ExplainedSymantec SSL Explained
Symantec SSL ExplainedSymantec Website Security
 
WordPress and SSL
WordPress and SSLWordPress and SSL
WordPress and SSLChris Burgess
 
Https presentation
Https presentationHttps presentation
Https presentationpatel jatin
 
Scalable Reliable Secure REST
Scalable Reliable Secure RESTScalable Reliable Secure REST
Scalable Reliable Secure RESTguestb2ed5f
 

More Related Content

What's hot

SSL Certificates and Operations
SSL Certificates and OperationsSSL Certificates and Operations
SSL Certificates and OperationsNisheed KM
 
Paid vs Free SSL Certificates: Which One Should You Pick in 2021?
Paid vs Free SSL Certificates: Which One Should You Pick in 2021?Paid vs Free SSL Certificates: Which One Should You Pick in 2021?
Paid vs Free SSL Certificates: Which One Should You Pick in 2021?RonanMarco1
 
Dev con kolkata 2012 websockets
Dev con kolkata 2012 websocketsDev con kolkata 2012 websockets
Dev con kolkata 2012 websocketsSANKARSAN BOSE
 
Maximizing SPDY and SSL Performance (June 2014)
Maximizing SPDY and SSL Performance (June 2014)Maximizing SPDY and SSL Performance (June 2014)
Maximizing SPDY and SSL Performance (June 2014)Zoompf
 
Ssl pinning and hsts header
Ssl pinning and hsts headerSsl pinning and hsts header
Ssl pinning and hsts headerSaleem M
 

What's hot (8)

SSL Certificates and Operations
SSL Certificates and OperationsSSL Certificates and Operations
SSL Certificates and Operations
 
Paid vs Free SSL Certificates: Which One Should You Pick in 2021?
Paid vs Free SSL Certificates: Which One Should You Pick in 2021?Paid vs Free SSL Certificates: Which One Should You Pick in 2021?
Paid vs Free SSL Certificates: Which One Should You Pick in 2021?
 
Dev con kolkata 2012 websockets
Dev con kolkata 2012 websocketsDev con kolkata 2012 websockets
Dev con kolkata 2012 websockets
 
K8s rbac-sso
K8s rbac-ssoK8s rbac-sso
K8s rbac-sso
 
K8s idm-devfest
K8s idm-devfestK8s idm-devfest
K8s idm-devfest
 
Lets Encrypt!
Lets Encrypt!Lets Encrypt!
Lets Encrypt!
 
Maximizing SPDY and SSL Performance (June 2014)
Maximizing SPDY and SSL Performance (June 2014)Maximizing SPDY and SSL Performance (June 2014)
Maximizing SPDY and SSL Performance (June 2014)
 
Ssl pinning and hsts header
Ssl pinning and hsts headerSsl pinning and hsts header
Ssl pinning and hsts header
 

Similar to JoomlaDay Austria 2016 - Presentation Why and how to use HTTPS on your website!

Geek Guide: Apache Web Servers and SSL Authentication
Geek Guide: Apache Web Servers and SSL AuthenticationGeek Guide: Apache Web Servers and SSL Authentication
Geek Guide: Apache Web Servers and SSL AuthenticationRapidSSLOnline.com
 
WordCamp Raleigh 2017 - Move from HTTP to HTTPS or become irrelevant - Peter ...
WordCamp Raleigh 2017 - Move from HTTP to HTTPS or become irrelevant - Peter ...WordCamp Raleigh 2017 - Move from HTTP to HTTPS or become irrelevant - Peter ...
WordCamp Raleigh 2017 - Move from HTTP to HTTPS or become irrelevant - Peter ...Peter LaFond
 
White paper - Full SSL automation with OneClickSSL
White paper - Full SSL automation with OneClickSSLWhite paper - Full SSL automation with OneClickSSL
White paper - Full SSL automation with OneClickSSLGlobalSign
 
Webinar SSL English
Webinar SSL EnglishWebinar SSL English
Webinar SSL EnglishSSL247®
 
Introduction to SSL and How to Exploit & Secure
Introduction to SSL and How to Exploit & SecureIntroduction to SSL and How to Exploit & Secure
Introduction to SSL and How to Exploit & SecureBrian Ritchie
 
Learn to Add an SSL Certificate Boost Your Site's Security.pdf
Learn to Add an SSL Certificate Boost Your Site's Security.pdfLearn to Add an SSL Certificate Boost Your Site's Security.pdf
Learn to Add an SSL Certificate Boost Your Site's Security.pdfReliqusConsulting
 
HTTP vs HTTPS, Do You Really Need HTTPS?
HTTP vs HTTPS, Do You Really Need HTTPS?HTTP vs HTTPS, Do You Really Need HTTPS?
HTTP vs HTTPS, Do You Really Need HTTPS?CheapSSLsecurity
 
Certificate pinning in android applications
Certificate pinning in android applicationsCertificate pinning in android applications
Certificate pinning in android applicationsArash Ramez
 
[Cluj] Turn SSL ON
[Cluj] Turn SSL ON[Cluj] Turn SSL ON
[Cluj] Turn SSL ONOWASP EEE
 
Https presentation
Https presentationHttps presentation
Https presentationpatel jatin
 
Scalable Reliable Secure REST
Scalable Reliable Secure RESTScalable Reliable Secure REST
Scalable Reliable Secure RESTguestb2ed5f
 
Securing the network communication using One-way SSL & Two-way SSL | MuleSoft...
Securing the network communication using One-way SSL & Two-way SSL | MuleSoft...Securing the network communication using One-way SSL & Two-way SSL | MuleSoft...
Securing the network communication using One-way SSL & Two-way SSL | MuleSoft...MysoreMuleSoftMeetup
 
Demystfying secure certs
Demystfying secure certsDemystfying secure certs
Demystfying secure certsGary Williams
 
Is web security part of your annual security audit
Is web security part of your annual security auditIs web security part of your annual security audit
Is web security part of your annual security auditDianne Douglas
 
Ssl
SslSsl
Sslhuia
 
SSL self signed deployment on Ubuntu 16.04
SSL self signed deployment on Ubuntu 16.04SSL self signed deployment on Ubuntu 16.04
SSL self signed deployment on Ubuntu 16.04MH Qapandaran
 
SSL Certificate: Stamp of Web Security
SSL Certificate: Stamp of Web SecuritySSL Certificate: Stamp of Web Security
SSL Certificate: Stamp of Web SecurityHTS Hosting
 

Similar to JoomlaDay Austria 2016 - Presentation Why and how to use HTTPS on your website! (20)

Geek Guide: Apache Web Servers and SSL Authentication
Geek Guide: Apache Web Servers and SSL AuthenticationGeek Guide: Apache Web Servers and SSL Authentication
Geek Guide: Apache Web Servers and SSL Authentication
 
WordCamp Raleigh 2017 - Move from HTTP to HTTPS or become irrelevant - Peter ...
WordCamp Raleigh 2017 - Move from HTTP to HTTPS or become irrelevant - Peter ...WordCamp Raleigh 2017 - Move from HTTP to HTTPS or become irrelevant - Peter ...
WordCamp Raleigh 2017 - Move from HTTP to HTTPS or become irrelevant - Peter ...
 
White paper - Full SSL automation with OneClickSSL
White paper - Full SSL automation with OneClickSSLWhite paper - Full SSL automation with OneClickSSL
White paper - Full SSL automation with OneClickSSL
 
Webinar SSL English
Webinar SSL EnglishWebinar SSL English
Webinar SSL English
 
Introduction to SSL and How to Exploit & Secure
Introduction to SSL and How to Exploit & SecureIntroduction to SSL and How to Exploit & Secure
Introduction to SSL and How to Exploit & Secure
 
Learn to Add an SSL Certificate Boost Your Site's Security.pdf
Learn to Add an SSL Certificate Boost Your Site's Security.pdfLearn to Add an SSL Certificate Boost Your Site's Security.pdf
Learn to Add an SSL Certificate Boost Your Site's Security.pdf
 
HTTP vs HTTPS, Do You Really Need HTTPS?
HTTP vs HTTPS, Do You Really Need HTTPS?HTTP vs HTTPS, Do You Really Need HTTPS?
HTTP vs HTTPS, Do You Really Need HTTPS?
 
Certificate pinning in android applications
Certificate pinning in android applicationsCertificate pinning in android applications
Certificate pinning in android applications
 
[Cluj] Turn SSL ON
[Cluj] Turn SSL ON[Cluj] Turn SSL ON
[Cluj] Turn SSL ON
 
Let's Encrypt + DANE
Let's Encrypt + DANELet's Encrypt + DANE
Let's Encrypt + DANE
 
Symantec SSL Explained
Symantec SSL ExplainedSymantec SSL Explained
Symantec SSL Explained
 
WordPress and SSL
WordPress and SSLWordPress and SSL
WordPress and SSL
 
Https presentation
Https presentationHttps presentation
Https presentation
 
Scalable Reliable Secure REST
Scalable Reliable Secure RESTScalable Reliable Secure REST
Scalable Reliable Secure REST
 
Securing the network communication using One-way SSL & Two-way SSL | MuleSoft...
Securing the network communication using One-way SSL & Two-way SSL | MuleSoft...Securing the network communication using One-way SSL & Two-way SSL | MuleSoft...
Securing the network communication using One-way SSL & Two-way SSL | MuleSoft...
 
Demystfying secure certs
Demystfying secure certsDemystfying secure certs
Demystfying secure certs
 
Is web security part of your annual security audit
Is web security part of your annual security auditIs web security part of your annual security audit
Is web security part of your annual security audit
 
Ssl
SslSsl
Ssl
 
SSL self signed deployment on Ubuntu 16.04
SSL self signed deployment on Ubuntu 16.04SSL self signed deployment on Ubuntu 16.04
SSL self signed deployment on Ubuntu 16.04
 
SSL Certificate: Stamp of Web Security
SSL Certificate: Stamp of Web SecuritySSL Certificate: Stamp of Web Security
SSL Certificate: Stamp of Web Security
 

Recently uploaded

定制(AUT毕业证书)新西兰奥克兰理工大学毕业证成绩单原版一比一
定制(AUT毕业证书)新西兰奥克兰理工大学毕业证成绩单原版一比一定制(AUT毕业证书)新西兰奥克兰理工大学毕业证成绩单原版一比一
定制(AUT毕业证书)新西兰奥克兰理工大学毕业证成绩单原版一比一Fs
 
Q4-1-Illustrating-Hypothesis-Testing.pptx
Q4-1-Illustrating-Hypothesis-Testing.pptxQ4-1-Illustrating-Hypothesis-Testing.pptx
Q4-1-Illustrating-Hypothesis-Testing.pptxeditsforyah
 
Git and Github workshop GDSC MLRITM
Git and Github workshop GDSC MLRITMGit and Github workshop GDSC MLRITM
Git and Github workshop GDSC MLRITMgdsc13
 
『澳洲文凭』买詹姆士库克大学毕业证书成绩单办理澳洲JCU文凭学位证书
『澳洲文凭』买詹姆士库克大学毕业证书成绩单办理澳洲JCU文凭学位证书『澳洲文凭』买詹姆士库克大学毕业证书成绩单办理澳洲JCU文凭学位证书
『澳洲文凭』买詹姆士库克大学毕业证书成绩单办理澳洲JCU文凭学位证书rnrncn29
 
Magic exist by Marta Loveguard - presentation.pptx
Magic exist by Marta Loveguard - presentation.pptxMagic exist by Marta Loveguard - presentation.pptx
Magic exist by Marta Loveguard - presentation.pptxMartaLoveguard
 
Call Girls Near The Suryaa Hotel New Delhi 9873777170
Call Girls Near The Suryaa Hotel New Delhi 9873777170Call Girls Near The Suryaa Hotel New Delhi 9873777170
Call Girls Near The Suryaa Hotel New Delhi 9873777170Sonam Pathan
 
A Good Girl's Guide to Murder (A Good Girl's Guide to Murder, #1)
A Good Girl's Guide to Murder (A Good Girl's Guide to Murder, #1)A Good Girl's Guide to Murder (A Good Girl's Guide to Murder, #1)
A Good Girl's Guide to Murder (A Good Girl's Guide to Murder, #1)Christopher H Felton
 
Blepharitis inflammation of eyelid symptoms cause everything included along w...
Blepharitis inflammation of eyelid symptoms cause everything included along w...Blepharitis inflammation of eyelid symptoms cause everything included along w...
Blepharitis inflammation of eyelid symptoms cause everything included along w...Excelmac1
 
定制(Management毕业证书)新加坡管理大学毕业证成绩单原版一比一
定制(Management毕业证书)新加坡管理大学毕业证成绩单原版一比一定制(Management毕业证书)新加坡管理大学毕业证成绩单原版一比一
定制(Management毕业证书)新加坡管理大学毕业证成绩单原版一比一Fs
 
Film cover research (1).pptxsdasdasdasdasdasa
Film cover research (1).pptxsdasdasdasdasdasaFilm cover research (1).pptxsdasdasdasdasdasa
Film cover research (1).pptxsdasdasdasdasdasa494f574xmv
 
Elevate Your Business with Our IT Expertise in New Orleans
Elevate Your Business with Our IT Expertise in New OrleansElevate Your Business with Our IT Expertise in New Orleans
Elevate Your Business with Our IT Expertise in New Orleanscorenetworkseo
 
Top 10 Interactive Website Design Trends in 2024.pptx
Top 10 Interactive Website Design Trends in 2024.pptxTop 10 Interactive Website Design Trends in 2024.pptx
Top 10 Interactive Website Design Trends in 2024.pptxDyna Gilbert
 
Font Performance - NYC WebPerf Meetup April '24
Font Performance - NYC WebPerf Meetup April '24Font Performance - NYC WebPerf Meetup April '24
Font Performance - NYC WebPerf Meetup April '24Paul Calvano
 
SCM Symposium PPT Format Customer loyalty is predi
SCM Symposium PPT Format Customer loyalty is prediSCM Symposium PPT Format Customer loyalty is predi
SCM Symposium PPT Format Customer loyalty is predieusebiomeyer
 
PHP-based rendering of TYPO3 Documentation
PHP-based rendering of TYPO3 DocumentationPHP-based rendering of TYPO3 Documentation
PHP-based rendering of TYPO3 DocumentationLinaWolf1
 
Potsdam FH学位证,波茨坦应用技术大学毕业证书1:1制作
Potsdam FH学位证,波茨坦应用技术大学毕业证书1:1制作Potsdam FH学位证,波茨坦应用技术大学毕业证书1:1制作
Potsdam FH学位证,波茨坦应用技术大学毕业证书1:1制作ys8omjxb
 
NSX-T and Service Interfaces presentation
NSX-T and Service Interfaces presentationNSX-T and Service Interfaces presentation
NSX-T and Service Interfaces presentationMarko4394
 
办理(UofR毕业证书)罗切斯特大学毕业证成绩单原版一比一
办理(UofR毕业证书)罗切斯特大学毕业证成绩单原版一比一办理(UofR毕业证书)罗切斯特大学毕业证成绩单原版一比一
办理(UofR毕业证书)罗切斯特大学毕业证成绩单原版一比一z xss
 
『澳洲文凭』买拉筹伯大学毕业证书成绩单办理澳洲LTU文凭学位证书
『澳洲文凭』买拉筹伯大学毕业证书成绩单办理澳洲LTU文凭学位证书『澳洲文凭』买拉筹伯大学毕业证书成绩单办理澳洲LTU文凭学位证书
『澳洲文凭』买拉筹伯大学毕业证书成绩单办理澳洲LTU文凭学位证书rnrncn29
 
Contact Rya Baby for Call Girls New Delhi
Contact Rya Baby for Call Girls New DelhiContact Rya Baby for Call Girls New Delhi
Contact Rya Baby for Call Girls New Delhimiss dipika
 

Recently uploaded (20)

定制(AUT毕业证书)新西兰奥克兰理工大学毕业证成绩单原版一比一
定制(AUT毕业证书)新西兰奥克兰理工大学毕业证成绩单原版一比一定制(AUT毕业证书)新西兰奥克兰理工大学毕业证成绩单原版一比一
定制(AUT毕业证书)新西兰奥克兰理工大学毕业证成绩单原版一比一
 
Q4-1-Illustrating-Hypothesis-Testing.pptx
Q4-1-Illustrating-Hypothesis-Testing.pptxQ4-1-Illustrating-Hypothesis-Testing.pptx
Q4-1-Illustrating-Hypothesis-Testing.pptx
 
Git and Github workshop GDSC MLRITM
Git and Github workshop GDSC MLRITMGit and Github workshop GDSC MLRITM
Git and Github workshop GDSC MLRITM
 
『澳洲文凭』买詹姆士库克大学毕业证书成绩单办理澳洲JCU文凭学位证书
『澳洲文凭』买詹姆士库克大学毕业证书成绩单办理澳洲JCU文凭学位证书『澳洲文凭』买詹姆士库克大学毕业证书成绩单办理澳洲JCU文凭学位证书
『澳洲文凭』买詹姆士库克大学毕业证书成绩单办理澳洲JCU文凭学位证书
 
Magic exist by Marta Loveguard - presentation.pptx
Magic exist by Marta Loveguard - presentation.pptxMagic exist by Marta Loveguard - presentation.pptx
Magic exist by Marta Loveguard - presentation.pptx
 
Call Girls Near The Suryaa Hotel New Delhi 9873777170
Call Girls Near The Suryaa Hotel New Delhi 9873777170Call Girls Near The Suryaa Hotel New Delhi 9873777170
Call Girls Near The Suryaa Hotel New Delhi 9873777170
 
A Good Girl's Guide to Murder (A Good Girl's Guide to Murder, #1)
A Good Girl's Guide to Murder (A Good Girl's Guide to Murder, #1)A Good Girl's Guide to Murder (A Good Girl's Guide to Murder, #1)
A Good Girl's Guide to Murder (A Good Girl's Guide to Murder, #1)
 
Blepharitis inflammation of eyelid symptoms cause everything included along w...
Blepharitis inflammation of eyelid symptoms cause everything included along w...Blepharitis inflammation of eyelid symptoms cause everything included along w...
Blepharitis inflammation of eyelid symptoms cause everything included along w...
 
定制(Management毕业证书)新加坡管理大学毕业证成绩单原版一比一
定制(Management毕业证书)新加坡管理大学毕业证成绩单原版一比一定制(Management毕业证书)新加坡管理大学毕业证成绩单原版一比一
定制(Management毕业证书)新加坡管理大学毕业证成绩单原版一比一
 
Film cover research (1).pptxsdasdasdasdasdasa
Film cover research (1).pptxsdasdasdasdasdasaFilm cover research (1).pptxsdasdasdasdasdasa
Film cover research (1).pptxsdasdasdasdasdasa
 
Elevate Your Business with Our IT Expertise in New Orleans
Elevate Your Business with Our IT Expertise in New OrleansElevate Your Business with Our IT Expertise in New Orleans
Elevate Your Business with Our IT Expertise in New Orleans
 
Top 10 Interactive Website Design Trends in 2024.pptx
Top 10 Interactive Website Design Trends in 2024.pptxTop 10 Interactive Website Design Trends in 2024.pptx
Top 10 Interactive Website Design Trends in 2024.pptx
 
Font Performance - NYC WebPerf Meetup April '24
Font Performance - NYC WebPerf Meetup April '24Font Performance - NYC WebPerf Meetup April '24
Font Performance - NYC WebPerf Meetup April '24
 
SCM Symposium PPT Format Customer loyalty is predi
SCM Symposium PPT Format Customer loyalty is prediSCM Symposium PPT Format Customer loyalty is predi
SCM Symposium PPT Format Customer loyalty is predi
 
PHP-based rendering of TYPO3 Documentation
PHP-based rendering of TYPO3 DocumentationPHP-based rendering of TYPO3 Documentation
PHP-based rendering of TYPO3 Documentation
 
Potsdam FH学位证,波茨坦应用技术大学毕业证书1:1制作
Potsdam FH学位证,波茨坦应用技术大学毕业证书1:1制作Potsdam FH学位证,波茨坦应用技术大学毕业证书1:1制作
Potsdam FH学位证,波茨坦应用技术大学毕业证书1:1制作
 
NSX-T and Service Interfaces presentation
NSX-T and Service Interfaces presentationNSX-T and Service Interfaces presentation
NSX-T and Service Interfaces presentation
 
办理(UofR毕业证书)罗切斯特大学毕业证成绩单原版一比一
办理(UofR毕业证书)罗切斯特大学毕业证成绩单原版一比一办理(UofR毕业证书)罗切斯特大学毕业证成绩单原版一比一
办理(UofR毕业证书)罗切斯特大学毕业证成绩单原版一比一
 
『澳洲文凭』买拉筹伯大学毕业证书成绩单办理澳洲LTU文凭学位证书
『澳洲文凭』买拉筹伯大学毕业证书成绩单办理澳洲LTU文凭学位证书『澳洲文凭』买拉筹伯大学毕业证书成绩单办理澳洲LTU文凭学位证书
『澳洲文凭』买拉筹伯大学毕业证书成绩单办理澳洲LTU文凭学位证书
 
Contact Rya Baby for Call Girls New Delhi
Contact Rya Baby for Call Girls New DelhiContact Rya Baby for Call Girls New Delhi
Contact Rya Baby for Call Girls New Delhi
 

JoomlaDay Austria 2016 - Presentation Why and how to use HTTPS on your website!

  • 1. Why and how to use HTTPS on your website!
  • 2. HTTPS • Senior Windows System engineer at ORTEC B.V. • Regional Coordinator – Joomla Certification Program for the Joomla User groups in the Netherlands • Owner Connecting Connections – Since Mambo working with and for Joomla! – Extension translator RSJoomla!, Hikashop, Freestyle-Joomla – Organizer/Supporter many different Joomla! events. Wilco Alsemgeest https://twitter.com/conconnl https://twitter.com/conconnl https://www.facebook.com/conconnl/
  • 3. HTTPS  Principles of TLS / SSL  Obtaining an SSL Certificate  Which SSL Certificates are available?  What do I need for this?  How to get one?  How much time does it take?  Implementation and Maintenance  Good to know!  Joomla! and HTTPS
  • 4. HTTPS  Definitions  What is TLS / SSL?  What are certificates?  Why is HTTPS necessary?  How is the secure connection created?  What are the dependencies? Principles of TLS / SSL
  • 5. HTTPS  DNS – Domain Name System  TLS / SSL – Transport Layer Security – Secure Sockets Layer (Predecessor)  CA – Certificate Authority  (Sub) Domain name (TLD) Principles of TLS / SSL Definitions
  • 6. HTTPS Transport Layer Security (TLS) and its predecessor Secure Sockets Layer (SSL), Are standard cryptographic protocols for providing secure communication between supplier and client. Principles of TLS / SSL What is TLS / SSL?
  • 7. HTTPS All browsers have the capability to interact with web servers using the TLS / SSL Protocol. For that, the browser needs an Root CA Public SSL Certificate (Pre-Installed) and the server needs an SSL Certificate issued by a Root CA to be able to establish a secure connection. Principles of TLS / SSL What are certificates?
  • 8. HTTPS Websites that use an SSL Certificate can be recognized by the use of the HTTPS protocol instead of HTTP. The “S” stands for Secure, which means encrypted by both the client browser and web server. Because the network traffic is encrypted from start to end there is no possibility to capture (for instance) username and password combinations. Principles of TLS / SSL Why is HTTPS necessary?
  • 9. HTTPS When a browser attempts to access a website that is secured by TLS, the browser and the web Server establish an TLS connecting using a process called “Handshake”. Essentially, three keys are used to set-up the TLS connection: The public, the private and the session keys. Anything encrypted with the public key can only be decrypted with the private key, and vice versa. Principles of TLS / SSL How is the secure connection created?
  • 10. HTTPS Principles of TLS / SSL How is the secure connection created?
  • 11. HTTPS 1. The browser connects with the secured with TLS / SSL (HTTPS) website and asks the server to identify itself. 2. The server sends a copy of de SSL Certificate and Public key. 3. The browser checks the certificate against the list with trusted Certificate Authorities and the date/time validity. The website address is checked with the common name in the certificate. The browser creates a Session Key with the use of the Public Key and sends this to the server. 4. The server decodes Session Key with the Private Key; Sends confirmation encrypted with Session Key back to browser. 5. Server and browser start communicating with all data encrypted with the Session Key. Principles of TLS / SSL How is the secure connection created?
  • 12. HTTPS SSL certificates are bound to a ‘common name’ registered in the DNS, which is usually a fully qualified domain name but can be a wildcard name (e.g. *.domain.com) Principles of TLS / SSL What are the dependencies?
  • 13. HTTPS  Which SSL Certificates are available?  Kinds:  Domain name certificates  SAN/UC/Multi-domain certificates  Wildcard certificates  Validation methods:  Domain validation (DV) (For all kinds)  Organization validation (OV) (For all kinds)  Extended validation (EV) (Only for domain and Multi-Domain) Obtaining an SSL Certificate
  • 14. HTTPS  What do I need for this?  A unique IP address, or Server Name Indication (SNI) functionalities.  Correct contact information in WHOIS database.  Business/Organization validation documents. Obtaining an SSL Certificate
  • 15. HTTPS  How to get one?  There are different methods for obtaining a certificate all methods result in the same certificate.  An IT partner can help with obtaining the SSL certificate.  It’s possible to obtain a certificate at different suppliers. Root suppliers:  (Market leader)  (Number 2, Market leader)  (Oldest SSL Supplier)  (Fastest growing SSL Supplier) Obtaining an SSL Certificate
  • 16. HTTPS  How much time does it take? Depending on the type of certificate and the supplier used, it can take from minutes to weeks.  A domain validation certificate takes minutes.  A organization validation certificate can take hours up to days.  A extended validation certificate can take a few days up to a few weeks. Obtaining an SSL Certificate
  • 17. HTTPS  How do I implement one?  Hosting supplier.  ICT Partner  Hosting control panel (DirectAdmin, Plesk, Cpanel and others)  What maintenance is needed?  Certificate renewal.  Certificate replacement / upgrade. Implementation and Maintenance
  • 18. HTTPS  SHA-1 encryption is outdated and will display warnings in the browser.  HTTP Strict Transport Security (HSTS)  HTTP/2 (The new internet), most browsers only accept HTTPS with TLS 1.2.  Browsers are going to start warn visitors when the website does not use HTTPS Good to know!
  • 19. HTTPS  System – Global Configuration – Server – Force HTTPS  .htaccess configuration (Depending on the Hosting supplier) Joomla! & HTTPS
  • 20. HTTPS
  • 22. HTTPS