I had the opportunity to present a talk on SSL Certificates at our local LUG, the Washtenaw Linux Users Group, which uses some material from a previous HPR episode, but may be of interest to our listeners nonetheless. Because this was a lengthy presentation I have divided it into sections. This first section explains how SSL Certificates work, and the second one will explore some of the problems that we have with SSL Certificates, and how we might address those problems. For more go to http://www.zwilnik.com/?page_id=655

Links:

http://www.washlug.org/

https://securityblog.redhat.com/2014/10/15/poodle-a-ssl3-vulnerability-cve-2014-3566/

https://securityblog.redhat.com/2014/10/20/can-ssl-3-0-be-fixed-an-analysis-of-the-poodle-attack/

https://access.redhat.com/articles/1232123

https://www.eff.org/https-everywhere

https://www.eff.org/deeplinks/2014/08/google-boosts-secure-sites-search-results

http://en.wikipedia.org/wiki/X.509

https://engineering.purdue.edu/kak/compsec/NewLectures/Lecture13.pdf

http://www.zwilnik.com/?page_id=655