SSL Complete Guide: HTTP to HTTPS

SSL Complete Guide: HTTP to HTTPS

English | MP4 | AVC 1280×720 | AAC 44KHz 2ch | 11 Hours | 5.50 GB

Configure NGINX, Apache, install free SSL/TLS certificates from Let’s Encrypt, configure CloudFlare, create CSR request

This course is all about securing websites with SSL/TLS certificates.

Become a master of HTTPS, Let’s Encrypt, Cloudflare, NGINX and SSL/TLS Certificates.

This is the most complete practical SSL guide here on Udemy that includes tons of practical activities. All practice exercises are performed on a real domain and real hosting and finally you will get production ready solution with HTTPS setup and redirection of HTTP to HTTPS. You can have zero knowledge about computer networks, encryption, configuration of web servers. All will be taught from scratch, from simple setup to complex solution. If you want to get deep knowledge of SSL and HTTPS this course is for you!

We will start by exploring basics of symmetric encryption algorithms like AES, asymmetric encryption RSA, hashing protocols MD5 and SHA. Also I will explain you fundamentals of computer networks, TCP/IP stack and for that we will use Wireshark traffic analyzer.

  • You will learn what is the structure of the SSL/TLS certificate. Also you will understand why CAs (Certificate Authorities) are needed and how chain of trust is built.
  • In practice sections we will perform multiple practice activities:
  • Buy a domain and configure DNS settings
  • Use Certbot ACME client to automatically obtain free SSL certificate from Let’s Encrypt
  • With help of OpenSSL generate RSA keys, self-signed certificates
  • Secure WordPress with Apache using SSL/TLS certificates
  • Create CSR (Certificate Signing Request) by OpenSSL and submit CSR to CA server
  • Configure Cloudflare for your domain and setup different SSL modes of operations
  • Install and configure NGINX web server for SSL/TLS certificates
  • Migrate from HTTP to HTTPS
  • Redirect all traffic using HTTP 301 redirect from HTTP to HTTPS

With this course you will get lifetime-long access to 100 lectures and tens of practical exercises. After the course you will become a guru of SSL and TLS encryption and will be able easily obtain and install SSL certificates on your web servers.

What you’ll learn

  • Learn how to install SSL/TLS Certificate on the web server
  • What is the difference between HTTP and HTTPS
  • What is CA (Certificate Authority) and how chain of trust is built
  • How TLS certificate is structured (subject name, issuer name, validity period, signature etc.)
  • Let’s Encrypt free certificates that are valid 90 days. Certbot ACME client for automatic certificate issuing and renewal
  • Cloudflare reverse proxy with free SSL certificates
  • CSR (Certificate Signing Request), domain validation and certificate installation
  • Install and configure NGINX web server for SSL/TLS encryption
Table of Contents

Intro
1 Intro

Introduction to the HTTPS and TLS
2 Section 1 Introduction
3 Overview of researches dedicated to SSL TLS and HTTPS
4 Overview of the certificates of some popular websites
5 Difference between HTTP and HTTPS
6 Analyzing traffic using Wireshark
7 TCPIP stack by example
8 Analyzing HTTP protocol using Wireshark
9 Analyzing HTTPS and TLS using Wireshark

Encryption and hashing overview
10 Section 2 Introduction
11 Symmetric Key Encryption
12 Symmetric Key Encryption Algorithms
13 Hashing Overview
14 MD5 hashing algorithm
15 SHA hashing algorithm and HMAC overview
16 Asymmetric keys overview
17 Encryption using asymmetric keys
18 Signing data using assymmetric keys
19 RSA Overview
20 PKI – Public Key Infrastructure Overview
21 Certificate overview

RSA Certificates and Chain of Trust
22 Section 3 Introduction
23 Installing OpenSSL
24 Using OpenSSL for RSA keys generation
25 Exploring certificate of Instagram
26 Exploring certificate of Google
27 Exploring certificate of Comodo
28 Root CA and root certificates in the OS
29 How Chain of Trust is built
30 Verifying chain of certificates
31 Verifying SSL certificate and certificates chain
32 PKI Chain of trust and certificates summary
33 Certificate domain scopes

SSL TLS and HTTPS
34 Section 4 Introduction
35 Introduction to the SSL and TLS
36 History and versions of the SSL and TLS
37 Why RSA is not used for data encryption in HTTPS
38 How TLS session is established
39 Analyzing TLS session setup using Wireshark
40 Overview of cipher suites
41 Encryption key generation by the web browser
42 Delivering encryption key using Diffie Hellman key exchange
43 Diffie Hellman overview
44 Modulus operation
45 Diffie Hellman algorithm
46 Elliptic Curve Cryptography Overview
47 Point Addition on Elliptic Curve
48 Multiple Point Addition
49 Point Doubling and Optimization
50 Elliptic Curve Discrete Log Problem
51 Comparing formulas
52 ECDHE – Elliptic Curve Diffie Hellman Exchange
53 Exploring ECDHE with ECDSA

Launching TLS secured website with free domain and hosting
54 Section 5 Introduction
55 Free domains overview
56 Setting up free domain and hosting using GitHub Pages
57 Exploring TLS session with our website at Github.io – PART 1
58 Exploring TLS session with our website at Github.io – PART 2

Custom domain with free hosting
59 Section 6 Introduction
60 Planning next steps with Paid Domain
61 Buying a domain
62 Setting up free hosting
63 Overview of the TLS settings at the free hosting
64 OPTIONAL – Trying to install free Lets Encrypt TLS certificate on free hosting

Free TLS certificate (Lets Encrypt) at paid hosting
65 Section 7 Introduction
66 VPS vs Dedicated Server
67 Hosting Services Overview – PART 1
68 Hosting Services Overview – PART 2
69 Buying a droplet at DigitalOcean
70 Launching WordPress website with HTTPS
71 Exploring our brand new TLS Certificate
72 Finishing WordPress installation
73 Lets Encrypt and Certbot Overview
74 Exploring TLS certificates via shell
75 Exploring certbot configuration and testing renewal
76 What we have got so far

Cloudflare with free TLS certificate
77 Section 8 Introduction
78 Reverse Proxy and Cloudflare
79 Overview of the current setup
80 Moving our website to Cloudflare
81 Exploring free TLS certificate from Cloudflare
82 Exploring TLS settings at Cloudflare
83 Cloudflare SSL Operation Modes
84 Flexible SSL Operation Mode at Cloudflare
85 Off SSL Operation Mode at Cloudflare

Configuring NGINX web server and installing TLS certificate
86 Section 9 Introduction
87 Current Setup and planning next steps
88 Installing Nginx web server
89 Configuring Nginx web server
90 Setting up Cloudflare Origin TLS certificate
91 Cloudflare summary
92 Disable Cloudflare

Creating self-signed certificate using OpenSSL
93 Section 10 Introduction
94 Current Nginx server setup overview
95 CSR – Certificate Signing Request
96 Generate Self-Signed certificate using OpenSSL
97 Self-signed certificate overview
98 Cloudflare and self-signed certificate

Getting and installing custom certificate
99 Section 11 Introduction
100 Paid certificates overview
101 Getting 90-days valid free TLS certificate
102 Installing Custom TLS Certificate
103 Analyzing our new custom TLS Certificate
104 Our TLS Setup is not complete
105 Installing TLS certificate of intermediate CA
106 HTTP and HTTPS versions of website
107 Configuring 301 Redirects to HTTPS
108 Custom TLS Certificate Summary

Cleanup
109 Cleanup