YoVDO

Calm Down: HTTPS Is Not a VPN

Offered By: OWASP Foundation via YouTube

Tags

Web Security Courses Network Security Courses Privacy Courses TLS Courses Android Security Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore the limitations and misconceptions surrounding HTTPS in this 46-minute conference talk from AppSecEU 2016 in Rome. Delve into topics such as packet capture, OCSP, TLS exceptions, fingerprinting techniques, and privacy concerns related to HTTPS implementation. Gain insights into why HTTPS is not equivalent to a VPN and understand its implications for web security and user privacy across various platforms, including Android.

Syllabus

Intro
Welcome
About Dirk
Motivation
What if
HTTPS
HTTP
Why HTTPS is nonsense
Packet capture
Clearing
OCSP
Fingerprinting
TLS Exceptions
TLS fingerprinting
Client Hello
Client Time Off
Packets
Application Data
Website fingerprinting
trackers
security
Android
Conclusion
Privacy


Taught by

OWASP Foundation

Related Courses

Neuroethics
University of Pennsylvania via Coursera Fundamentals of Online Education: Planning and Application
Georgia Institute of Technology via Coursera Understanding Media by Understanding Google
Northwestern University via Coursera Wiretaps to Big Data: Privacy and Surveillance in the Age of Interconnection
Cornell University via edX Internet, les autres et moi
Certificat informatique et internet via France Université Numerique