The Best TLS Training in the World

Feisty Duck is a London-based provider of computer security training. Our practical hands-on courses are taught in small groups and led by industry experts. Courses include SSL/TLS, Internet PKI and Apache/ModSecurity.

Feisty Duck

<H2>The Best TLS Training in the World </H2>
Designed by the author of the much acclaimed Bulletproof SSL and TLS, this practical SSL training course will teach you how to deploy secure servers and encrypted web applications during a day packed with theory and practical work. We’ll focus on what you need in your daily work to deliver best security, availability and performance. And you will learn how to get an A+ on SSL Labs! 
The course is taught in small classes. 
<H2 CLASS="large">Why This Course is for You</H2>
<UL>
<LI>Understand threats and attacks against encryption</LI>
<LI>Identify real risks that apply to your systems</LI>
<LI>Deploy servers with strong private keys and valid certificates</LI>
<LI>Deploy TLS configurations with strong encryption and forward secrecy</LI>
<LI>Understand higher-level attacks against web applications</LI>
<LI>Use the latest defence technologies, such as HSTS, CSP, and HPKP</LI>
</UL>
<H2>Target Audience</H2>
This course is for system administrators, developers, and IT security professionals, who want to learn how to protect their systems from eavesdropping and impersonation attacks.
    Level:  Intermediate     Duration: 1 day     Extras: Lunch and refreshments included
About a month prior to the course we'll send you a digital copy of Bulletproof SSL and TLS, our comprehensive guide to SSL/TLS and Internet PKI. You'll get the paper copy on the day. We'll also give you a bunch of exercises and a hardcopy of the slides.
<H2>Prerequisites</H2>
<UL>
<LI>Basic Linux command line skills: moving about, invoking commands, editing configuration files.</LI>
<LI>A laptop with a modern browser (Chrome or Firefox) and a SSH client, which you will only need to connect to your assigned virtual server. To connect to the server, you will need:</LI>
<LI>HTTP/HTTPS on ports 80 and 443 </LI>
<LI>SSH on port 22 </LI>
<LI>You should be comfortable using a command-line editor.</LI>
</UL>
We'll provide you with your own virtual server and a sample web application to work on throughout the course.
<H2>Course Outline </H2>
1. Introduction         a. The need for network encryption         b. Understanding encrypted communication         c. The role of public key infrastructure (PKI)         d. SSL/TLS and Internet PKI threat model
2.  Keys and certificates         a. RSA and ECDSA: selecting the right key algorithm and size         b. Certificate hostnames and lifetime         c.  Practical work:                i. Private key generation                ii. Certificate Signing Request (CSR) generation                iii. Self-signed certificates                iv. Obtaining valid certificates from Let’s Encrypt         d. Sidebar: Revocation
3. Protocols and cipher suites         a. Protocol security         b. Key exchange strength         c. Forward security         d. Cipher suite configuration         e. Practical work                i. Secure web server configuration                ii. Server testing using SSL Labs         f.  Sidebar: Server Name indication (SNI)         g. Sidebar: Performance considerations 
4. HTTPS topics         a. Man-in-the-middle attacks         b. Mixed content         c. Cookie security         d. CRIME: Information leakage via compression         e. HTTP Strict Transport Security         f. Content Security Policy         g. HTTP Public Key Pinning         h. Practical work:                i. Deploying HSTS to deploy robust encryption                ii. Deploying CSP to deal with mixed content
5. Putting it all together: Getting an A+ in SSL Labs
We will also provide you with many additional exercises that you can work on in your own time. You'll be able to ask us for help via email. And if you're already familiar with the basics, we'll challenge you with some of the advanced exercises on the day.
<H2>Meet the Author </H2>
Ivan Ristić is a security researcher, engineer, and author, known especially for his contributions to the web application firewall field and development of <A HREF="https://www.modsecurity.org" TARGET="_blank" DATA-MSYS-CLICKTRACK="0" REL="nofollow noopener noreferrer">ModSecurity</A>, an open source web application firewall, and for his SSL/TLS and PKI research, tools and guides published on the <A HREF="https://www.ssllabs.com" TARGET="_blank" DATA-MSYS-CLICKTRACK="0" REL="nofollow noopener noreferrer">SSL Labs</A> web site.
He is the author of three books, <A HREF="https://www.feistyduck.com/books/apache-security/" TARGET="_blank" DATA-MSYS-CLICKTRACK="0" REL="nofollow noopener noreferrer">Apache Security</A>, <A HREF="https://www.feistyduck.com/books/modsecurity-handbook/" TARGET="_blank" DATA-MSYS-CLICKTRACK="0" REL="nofollow noopener noreferrer">ModSecurity Handbook</A>, and <A HREF="https://www.feistyduck.com/books/bulletproof-ssl-and-tls/" TARGET="_blank" DATA-MSYS-CLICKTRACK="0" REL="nofollow noopener noreferrer">Bulletproof SSL and TLS</A>, which he publishes via Feisty Duck, his own platform for continuous writing and publishing. Ivan is an active participant in the security community and you'll often find him speaking at security conferences such as Black Hat, RSA, OWASP AppSec, and others. He is currently working on his next exciting project called <A HREF="https://www.hardenize.com/" TARGET="_blank" DATA-MSYS-CLICKTRACK="0" REL="nofollow noopener noreferrer">Hardenize</A>.
<H2>Meet the Trainer</H2>
Scott Helme is a security researcher, consultant and international speaker. He can often be found talking about web security and performance online and helping organisations better deploy both.
Founder of <A HREF="https://report-uri.io/" TARGET="_blank" DATA-MSYS-CLICKTRACK="0" REL="nofollow noopener noreferrer">report-uri.io</A>, a free CSP report collection service, and <A HREF="https://securityheaders.io" TARGET="_blank" DATA-MSYS-CLICKTRACK="0" REL="nofollow noopener noreferrer">securityheaders.io</A>, a free security analyser, Scott has a tendency to always be involved in building something new and exciting. As a result, he is currently working with Ivan on <A HREF="https://www.hardenize.com/" TARGET="_blank" DATA-MSYS-CLICKTRACK="0" REL="nofollow noopener noreferrer">Hardenize</A>!
<H2>Terms and Conditions</H2>
Please note that by ordering this course you acknowledge acceptance of Feisty Duck's <A HREF="https://www.feistyduck.com/about/terms_of_supply" TARGET="_blank" DATA-MSYS-CLICKTRACK="0" REL="nofollow noopener noreferrer">Terms and Conditions</A>.
<H2>FAQs</H2>
Where can I contact the organiser with any questions? Contact us at <A HREF="mailto:training@feistyduck.com" TARGET="_blank" REL="nofollow noopener noreferrer">training@feistyduck.com</A> with any questions about the event. 
What is the refund policy? Any cancellation by you must be made by emailing <A HREF="mailto:training@feistyduck.com" TARGET="_blank" REL="nofollow noopener noreferrer">training@feistyduck.com</A>. <A HREF="mailto:contact@feistyduck.com" TARGET="_blank" REL="nofollow noopener noreferrer"></A>
You may cancel or reschedule a course subject to the following charges:
<UL>
<LI>Cancellation or reschedule with more than 60 days’ notice prior to course start date – no charge</LI>
<LI>Cancellation or reschedule with 31-60 days’ notice prior to course start date - 50% of the course fee </LI>
<LI>Cancellation or reschedule with less than 30 days’ notice prior to course start date - 100% of the course fee</LI>
</UL>
Other dates? Can't make this date? Tickets sold out? Email <A HREF="mailto:training@feistyduck.com" TARGET="_blank" REL="nofollow noopener noreferrer">training@feistyduck.com</A> to be notified about the future dates.

CodeNode

Our {communityGuidelinesLink} describe the sort of content we prohibit on Eventbrite. If you suspect an event may be in violation, you can report it to us so we can investigate.

To report other categories of prohibited or illegal content, submit {link}

The Best TLS Training in the World

More events from Feisty Duck

Discover more events from Feisty Duck, from Science & Tech to other experiences you might love.

Still looking for the right event?

Explore all events in London and filter by date, category, and more to find the perfect fit.

The Best TLS Training in the World

More events from Feisty Duck

Discover more events from Feisty Duck, from Science & Tech to other experiences you might love.

More Science & Tech events

Browse more Science & Tech events with different dates, prices, and formats to find your next great experience.

Still looking for the right event?

Explore all events in London and filter by date, category, and more to find the perfect fit.