CF

Practical TLS

13h 24m 49s
English
Paid

A deep dive into SSL and TLS: The protocols that secure the Internet.  Become An Expert In SSL/TLS.Even If You’re New To Online Security.

Banging your head against the keyboard over SSL and TLS?

Don’t worry, you’re not alone.

There’s not a tech in the world that hasn’t googled an ambiguous SSL error.

Sometimes you might get lucky with a tech hero at the end of your search.

Other times, that answer you found on Stack Exchange from 2016 seems to have worked. But you're left with a nagging suspicion that at best you’ve merely achieved “security” by concealing the holes.

When you treat each area of SSL/TLS as individual components, you miss out on the opportunity to understand the complete TLS ecosystem.

Without this understanding, you’ll always be banging your head against your keyboard when new errors arise.

You’ll dread the conversation coming up in interviews. And when your company faces a new deployment, you’ll be back at square one. 

Become an SSL/TLS expert without…

  • The frustration of the trial and error approach
  • Spending thousands of dollars on workshops or bootcamps
  • Wasting time digging through confusing, non-holistic resources
  • Uncertainty about the practical application of what you’re learning
  • Struggling alone with no one to bounce questions off  

You can’t develop an SSL solution without an expert.

Someone’s got to figure that stuff out. Why not you?

Accurately Diagnose Problems

Once you understand how it all fits together, you eliminate the guesswork. As people describe problems, you're able to accurately diagnose the failure and respond appropriately. No more crossing your fingers and hoping your solution works. You identify the problem. And you know how to fix it.

Impress Future Employers

When you interview for IT roles, employers are looking for candidates who can demonstrate technical expertise. If you can demonstrate that you are an expert in SSL/TLS, you’ll gain access to new job opportunities. Instead of hoping SSL won’t come up in your next job interview, you’ll be glad that it did.

Be The SSL/TLS Expert Your Colleagues Come to for Advice

Become the tech hero that steps in when others run into SSL errors. Be the trusted SME that your team depends on. Next time your colleague is perplexed tinkering with a new deployment, they’ll be relieved you were there to answer their questions.

Drive Home Your Skills with Hands-On Application

This course contains over 30 lab tasks so you can practice and master your new skills. You’ll amass practical knowledge with various OpenSSL commands through real-world demonstrations and labs. Gain confidence you can successfully execute the same tasks that emerge on the job. 

‌End‌ ‌Your‌ ‌Status‌ ‌as‌ ‌a ‌Crypto Amateur

The cryptography used in SSL and TLS is the same cryptography used in any other secure communication protocol, like SSH, IKE, and IPsec. Deepening your cryptography knowledge with SSL will pave the way for you to easily become an expert in these other protocols as well.

Master the OpenSSL Toolset

Gain a practical understanding of Open SSL through step-by-step demonstrations and labs. Get laser-focused instructions on how to use Open SSL with worked examples of common implementation tasks. Create CSRs and install your SSL/TLS certificates with ease. 

About the Author: Practical Networking

Practical Networking thumbnail

Practical Networking (practicalnetworking.net) is the teaching brand of Ed Harmoush, a network engineer and CCIE who publishes some of the clearest networking-fundamentals content on YouTube and through his paid courses. His material focuses on building the mental model of how networks actually work rather than memorising vendor-specific commands.

The CourseFlix listing carries two Practical Networking courses on networking fundamentals and the protocols underneath the modern internet. Material is paid and aimed at developers and aspiring network engineers who want a real grounding in TCP/IP, routing, and switching.

Watch Online 80 lessons

This is a demo lesson (10:00 remaining)

You can watch up to 10 minutes for free. Subscribe to unlock all 80 lessons in this course and access 10,000+ hours of premium content across all courses.

View Pricing
0:00
/
#1: What is SSL? What is TLS?
All Course Lessons (80)
#Lesson TitleDurationAccess
1
What is SSL? What is TLS? Demo
06:58
2
How do SSL/TLS Protect your Data?
04:39
3
Anti-Replay and Non-Repudiation
04:33
4
Key Players
05:04
5
TLS / SSL Versions - Part 1`
05:48
6
TLS / SSL Versions - Part 2
13:06
7
Hashing
11:06
8
Data-Integrity
06:48
9
Encryption
13:23
10
Public and Private Keys
12:04
11
How TLS and SSL use Cryptography
07:22
12
Public Key Infrastructure (PKI)
05:13
13
RSA
15:12
14
Diffie-Hellman
06:20
15
Digital Signature Algorithm
05:11
16
Overview of the SSL Process
03:51
17
What is in a Certificate?
16:02
18
Inspecting a Certificate
09:53
19
Certificate Extensions
13:31
20
What is in a Private Key?
09:05
21
What is in a CSR?
06:39
22
File Formats
09:02
23
Overview of the SSL Process, part 2
04:41
24
Certificate Validation - Part 1
05:35
25
Certificate Validation - Part 2
09:51
26
Certificate Chains - Part 1
10:24
27
Certificate Chains - Part 2
04:35
28
Basic Constraints
07:38
29
Certificate Types (DV, OV, EV)
11:26
30
Certificate Revocation
15:46
31
Checking Revocation Status
18:40
32
Cipher Suites
03:58
33
CS - Key Exchange - Part 1
07:41
34
CS - Forward Secrecy - Key Exchange - Part 2
06:27
35
CS - Authentication
08:10
36
CS - Encryption - Part 1
12:58
37
CS - Encryption - Part 2
07:19
38
CS - Hashing
07:57
39
Cipher Suites - Avoid, Accept, Prefer
07:49
40
Enumerating Cipher Suites
07:15
41
Records - Part 1
05:09
42
Records - Part 2
08:28
43
TLS Handshake
25:48
44
Handshake: Ephemeral Diffie-Hellman
03:28
45
Handshake: Session Resumption
09:36
46
Handshake: Mutual Authentication
06:23
47
TLS Extensions
04:14
48
Extension: OCSP Stapling
02:44
49
Extension: Server Name Indication (SNI)
05:36
50
Extension: Session Tickets
09:15
51
Decrypting TLS
09:50
52
Major SSL/TLS Failures over the Years
05:34
53
HTTP Strict Transport Security
09:54
54
Certificate Authority Authorization
05:44
55
Certificate Transparency - Part 1 - Overview
07:41
56
Certificate Transparency - Part 2 - Process and Demonstration
13:47
57
Certificate Transparency - Part 3 - Merkle Hash Trees
12:51
58
Insecure Renegotiation (Session Renegotiation)
14:48
59
Differences with TLS 1.3
05:07
60
Changes to Cipher Suites
16:09
61
Changes to Handshake
16:46
62
Changes to Renegotiation
13:21
63
Changes to Session Resumption
15:29
64
Middleboxes and Complications with migrating to TLS 1.3
13:55
65
Forward Secrecy and TLS 1.3
11:23
66
Decrypting TLS 1.3
12:55
67
TLS 1.3 Key Schedule - Part 1
14:07
68
TLS 1.3 Handshake
35:04
69
TLS 1.3 Key Schedule - Part 2
21:10
70
TLS 1.3 Session Resumption
13:02
71
TLS 1.3 PSK Mode Handshake
14:40
72
TLS 1.3 Session Tickets
13:17
73
TLS 1.3 0-RTT Handshake
17:16
74
TLS 1.3 Mutual Authentication
08:12
75
Extensions Overview
08:34
76
Review of TLS 1.3 Extensions already discussed
13:14
77
Extension: Signature Algorithm & Signature Algorithm Certificate
07:54
78
Extension: Cookies
09:51
79
Extension: ALPN - Application Layer Protocol Negotiation
06:53
80
Extension: PHA - Post Handshake Authentication
06:40
Unlock unlimited learning

Get instant access to all 79 lessons in this course, plus thousands of other premium courses. One subscription, unlimited knowledge.

Learn more about subscription

Books

Read Book Practical TLS

#TitleTypeOpen
1Lab 0-0 PDF
2Lab 3-1 PDF
3Lab 4-2 PDF
4Lab 4-1 PDF
5Lab 5-1 PDF
6Lab 6-1 PDF
7Lab 6-2 PDF
8Lab 6-4 PDF
9Lab 6-4 PDF
10Lab 6-3 PDF
11Lab 9-1 PDF
12Lab 10-1 PDF
13Lab 10-2 PDF

Related courses

Frequently asked questions

What prerequisites should I have before taking this course?
Before enrolling, it's beneficial to have a basic understanding of networking and online security concepts. Familiarity with cryptographic terms and principles will also help, as the course delves into specific topics like RSA, Diffie-Hellman, and the Digital Signature Algorithm.
What practical skills will I gain from this course?
Students will learn how to inspect certificates, validate certificate chains, and enumerate cipher suites. The course will also cover how to decrypt TLS traffic and handle key exchange processes, equipping students with the ability to secure data through encryption and understand the full SSL/TLS lifecycle.
Who is the target audience for this course?
This course is ideal for IT professionals, network administrators, and cybersecurity enthusiasts who want to deepen their understanding of SSL/TLS protocols and enhance their skills in securing online communications.
How does this course differ from other SSL/TLS courses?
The course offers a comprehensive exploration of the SSL/TLS protocols, including historical versions, key exchange mechanisms, and extensions like OCSP Stapling and SNI. It also uniquely covers major SSL/TLS failures and recent changes in TLS 1.3, providing a well-rounded perspective on the subject.
What specific tools or platforms are covered?
The course includes lessons on Public Key Infrastructure (PKI), certificate inspection tools, and methods for checking revocation status. It also covers the technical aspects of TLS Handshake, Certificate Transparency, and HTTP Strict Transport Security.
What topics are not covered in this course?
While the course covers many aspects of SSL/TLS, it does not delve into the implementation of these protocols in specific programming languages or operating systems. It focuses on the theoretical and practical application of SSL/TLS protocols rather than code development.
How much time will I need to commit to complete the course?
The course consists of 80 lessons. While the total runtime is not specified, students should allocate sufficient time to fully engage with the material, review lessons, and complete any practical exercises to gain a thorough understanding of SSL/TLS protocols.