Hansel and Gretel Do TLS

Explore the intricacies of TLS encryption in this 53-minute conference talk from the International PHP Conference. Delve into the world of secure internet communication as Marcus Bointon guides you through the forest of encryption acronyms, including TLS, OCSP, ECDHE, ALPN, HTTP/2, HSTS, HPKP, and CT. Gain a comprehensive understanding of TLS encryption, its components, and practical applications. Learn about the problems TLS solves, its inner workings, potential vulnerabilities, and available mitigations. Discover the latest developments in TLS 1.3 and acquire knowledge on tools and resources to enhance your encryption skills. From certificate creation to validation processes and security tips, this talk provides a breadcrumb trail through the complexities of modern web security, essential for developers and IT professionals alike.

Introduction
What is TLS
Why use TLS
Hashes
TLS 133
How does it work
Creating a certificate
The CAS
OCSP
Validation
Wildcards
TLS Configuration
Other Security Tips
RFC
Testing
Speed analysis