In this one-day hands-on course students learn how to use Secure Sockets Layer in a Web based environment to create and verify digital certificates and encrypt data to perform secure transactions.
Upon successful completion of this course, students will be able to:
- Define encryption and its purpose.
- Explain the difference between a digital signature and a message authentication code.
- Understand the need for a certifying authority.
- Examine popular asymmetric encryption algorithms.
- Explain the process of how SSL generates and exchanges secret keys.
- Understand what is
- Enable SSL on the client.
- Enable SSL on the server.
- Establish a criteria for choosing a certifying authority.
- Know when to consider using self signing certificates.
- Install Microsoft Certificate Services.
- Understand the differences between a enterprise CA and a stand alone CA.
- Enable secure communications with IIS.
- Configure Apache to run SSL.
Without Secure Sockets Layer there would be no secure communication or commerce on the Web. In this course, students gain hands-on experience installing, configuring, and enabling digital certificates to provide secure communication and transactions on the Internet.
Who Should Attend
This course is valuable for anyone who needs to create, install, transfer, and use digital certificates; or needs to provide secure Web communications.
Keyboard skills and familiarity with Web browsers, and a text editor is assumed.
Method Of Instruction
Lecture, demonstrations, five short interactive quizzes, and several hands-on exercises.
Throughout this course, students perform a series of extensive hands-on exercises, culminating in the deployment of a fully functional e-commerce application running on Apache, including:
- RSA Public Key Encryption
- SSL Handshake Protocol And Messages
- Installing A Root Certifying Authority
- Generate A Certificate Signing Request
- Exporting A SSL Certificate
- Adding SSL to Apache
Course OutlineChapter 1: Encryption 101
Chapter 2: SSL 101
- What Is Encryption
- Types Of Key Encryption
- Digital Signature
- Message Authentication Code
- Digital Certificate
- Certifying Authority
- Man-In-The-Middle Attack
- Key Agreement Protocol
- RSA Encryption
Chapter 3: Enabling Secure Web Communications
- SSL Security
- The OSI Model
- SSL In The OSI Model
- SSL Record Protocol
- SSL Handshake Protocol
- SSL Alert Protocol
- Change Cipher Spec Protocol
- Cipher Suite
Chapter 4: Using Microsoft Certificate Services
- Enable SSL On The Client
- Verifying Installed Certificates
- Enable SSL On The Server
- Configure An Apache Web Server For SSL
- Configure An IIS Web Server For SSL
- How Many Digital Certificates
- Criteria For Obtaining Digital Certificates
- Information Needed To Verify The Identity
- Self Signing Certificate
- Certificate Server
Chapter 5: Enabling Secure Transactions
- Steps To Secure Communications With IIS
- Microsoft Certificate Services
- Processing Certificate Requests
- Types Of Certifying Authorities
- Installing Certificate Services
- Set Up Certificate Services
- Which Machine
- Web Enrollment
- Public And Private Key Pair
- Configure The Indentifying Information
- Issuer Policy Statement
- The need for secure transactions
- Symmetric and asymmetric key encryption
- Verifying software integrity with GPG
- Installing digital certificates
- Enabling secure transactions with Secure Sockets Layer (SSL)