Unlocking The Secrets Of TLS - Scott Helme - NDC Security 2024

This talk was recorded at NDC Security in Oslo, Norway. #ndcsecurity #ndcconferences #security #developer #softwaredeveloper Attend the next NDC conference near you: https://ndcconferences.com https://ndc-security.com/ Subscribe to our YouTube channel and learn every day: /@NDC Follow our Social Media! https://www.facebook.com/ndcconferences https://twitter.com/NDC_Conferences https://www.instagram.com/ndc_conferences/ You open your browser, type in a domain, hit enter, and then bam, a secure connection! Did you ever wonder how that happens? How do we magic a secure connection out of thin air without any prior physical meeting to shake hands and exchange encryption keys on a USB drive? We can't just send our encryption keys to each other over the Internet, so how do we do it? In this talk we're going to take a deep-dive into what's known as the TLS Handshake, the mechanism we use to establish secure connections on the Internet. We'll look at how it works, we'll look at some of the mistakes we've made and the resulting harsh lessons we've learned along the way, and we'll demistfy this seemingly magic process of creating secure connections from nothing!