Secure Sockets Layer

Course Description

In this one-day hands-on course students learn how to use Secure Sockets Layer in a Web based environment to create and verify digital certificates and encrypt data to perform secure transactions.

Course Objectives

Upon successful completion of this course, students will be able to:

• Define encryption and its purpose.
• Explain the difference between a digital signature and a message authentication code.
• Understand the need for a certifying authority.
• Examine popular asymmetric encryption algorithms.
• Explain the process of how SSL generates and exchanges secret keys.
• Understand what is https.
• Enable SSL on the client.
• Enable SSL on the server.
• Establish a criteria for choosing a certifying authority.
• Know when to consider using self signing certificates.
• Install Microsoft Certificate Services.
• Understand the differences between a enterprise CA and a stand alone CA.
• Enable secure communications with IIS.
• Configure Apache to run SSL.

Course Benefits

Without Secure Sockets Layer there would be no secure communication or commerce on the Web. In this course, students gain hands-on experience installing, configuring, and enabling digital certificates to provide secure communication and transactions on the Internet.

Who Should Attend

This course is valuable for anyone who needs to create, install, transfer, and use digital certificates; or needs to provide secure Web communications.

Prerequisite

Keyboard skills and familiarity with Web browsers, and a text editor is assumed.

Method Of Instruction

Lecture, demonstrations, five short interactive quizzes, and several hands-on exercises.

Hands-on Exercises

Throughout this course, students perform a series of extensive hands-on exercises, culminating in the deployment of a fully functional e-commerce application running on Apache, including:

• RSA Public Key Encryption
• SSL Handshake Protocol And Messages
• Installing A Root Certifying Authority
• Generate A Certificate Signing Request
• Exporting A SSL Certificate
• Adding SSL to Apache

Course Outline

Chapter 1: Encryption 101

• What Is Encryption
• Authentication
• Privacy
• Integrity
• Accountability
• Types Of Key Encryption
• Digital Signature
• Message Authentication Code
• Digital Certificate
• Certifying Authority
• Man-In-The-Middle Attack
• Key Agreement Protocol
• RSA Encryption

Chapter 2: SSL 101

• SSL Security
• The OSI Model
• SSL In The OSI Model
• SSL Record Protocol
• SSL Handshake Protocol
• SSL Alert Protocol
• Change Cipher Spec Protocol
• Cipher Suite

Chapter 3: Enabling Secure Web Communications

• https
• Enable SSL On The Client
• Verifying Installed Certificates
• Enable SSL On The Server
• Configure An Apache Web Server For SSL
• Configure An IIS Web Server For SSL
• How Many Digital Certificates
• Criteria For Obtaining Digital Certificates
• Information Needed To Verify The Identity
• Self Signing Certificate
• Certificate Server

Chapter 4: Using Microsoft Certificate Services

• Steps To Secure Communications With IIS
• Microsoft Certificate Services
• Processing Certificate Requests
• Types Of Certifying Authorities
• Installing Certificate Services
• Set Up Certificate Services
• Which Machine
• Web Enrollment
• Public And Private Key Pair
• Configure The Indentifying Information
• Storage
• Issuer Policy Statement

Chapter 5: Enabling Secure Transactions

• The need for secure transactions
• Symmetric and asymmetric key encryption
• Verifying software integrity with GPG
• Installing digital certificates
• Adding mod_ssl to Apache
• Enabling secure transactions with Secure Sockets Layer (SSL)