Web Security Part-1 #37

-


What is web security?

The web security is not safe for every user. Daily we hear about website becoming unavailable because of denial of services attacks, or displaying changed information on their pages. These articles are essential for understanding web security basics. Those articles summarize the most common attacks and explain the countermeasures every web application should implement. Essentially, these articles provide you with the knowledge needed to create better and safe web applications.

 

Different sorts of web security

HTTPS

It is the secure version of HTTPS, the full name of this protocol is Hypertext transfer protocol secure, which is the primary used to send data between a web browser and a website. No one else can access the data, because It uses TSL protocol to encrypt communications, I will explain it at the coming topic.

 

How HTTPS Works

It uses encryption communication protocol, named transport layer security (TLS), was known as secure socket layer (SSL). This encryption uses two keys, one names public key and other one names private key.

Public Key: this shared used to decrypt in information encrypted.

Private Key: this key used to decrypt information encrypted by the public key and it not shared out of the server.

 

TLS

It is the protocol in use and designed to facilities privacy, data security for communication over the internet, the use case of TLS is encrypting the communication between application and servers, emails, messaging, voice by use (VoIP).

 

How TLS Works

Any Application or website to use the TSL it must have to installed the

TLS certification (also known as an “SSL certification”) on the base server, by issued to the person or the organization that own the domain to install it on the base server. It contains very import information about the owner, private and public key to use in decrypt and encrypt the communication this process named TLS handshake steps involved.

Determined the version of the TLS will use during the session.

Authentication the identity of the server by using the TLS certificate.

Generate the session key for use during the session after the handshake process ended.

Location: Hazira, Gujarat, India

Comments

Post a Comment

Thanks you
for comment and your suggestion

Popular posts from this blog

Hacker Directory #49

-
Image
  Do you feel dumb when you don't know the meaning of a certain term?  Well, then this will certainly help you out!  If you are ever unsure about anything, simply swipe left and find that specific word, then read the definition.  ABBREVIATIONS DDoS = Distributed Denial of Service DrDoS = Distributed Reflected Denial of Service Attack, uses a list of reflection servers or other methods such as DNS to spoof an attack to look like it's coming from multiple ips.  Amplification of power in the attack COULD occur.  FTP = File Transfer Protocol. Used for transferring files over an FTP server. FUD = Fable Hex = In computer science, hexadecimal base - refers to the number 16. These are the numbers that use the digits in the series: 0123456789ABCDEF. In the C programming language (as well as Java, JavaScript, C and other places), hexagonal numbers are subscribed by a bull. Thus, one can say that the number 0x80 is not equal to 80 decimals but equal to 128...
Read more

Programmer Know about following concept #21

-
Image
1. Caching 2. Time Complexity 3. Networking basics 4. Cloud Computing 5. Data structures and Algorithms 6. Database and SQL 7. Text editors 8. UNIX 9. Programming languages 10. Scripting languages   Explain  : 1. Caching A cache is stores data, that is hardware or software component so that future requests for that data can be served faster. Without cache no modern web system can runs. 2. Time Complexity Time complexity is the computational complexity that   describes the amount of time it takes to run on algorithm. 3. Networking basics You have to understand the basics of how the network in order to be a good programmer. Through switches, routers and wireless access points, devices connected to your network can communicate with one another and with other networks, like internet. Routers, wireless access points and Switches perform very different functions in a network. 4. Cloud Computing It's the on-demand availability of computer system resources, especially data s...
Read more

You are Founder of Software company #20

-
Image
Visual Design: The Goal of visual design is to shape and improve the user experience through considering the effects of illustration typography, space, etc. it is important to note that the visual side needs to comply with the UX design. Having a product that looks good cannot justify poor usability. Tips : Try developing a sense of good design by reading something (example: relevant digests) for 30 min every week to train your perception. you don’t need to have any actual design skill.   Resources: designernews.co Sodebar.io   UX Design: User experience describe all the interaction between customer and a product – From visual on a landing page to support request. Bad user experience designed make people hate your product. Tips : If you are not an expert. Follow establish design patterns and try copy great products design when possible. Those teams spent a lot of resources on experiments to improve their UX design, so it ...
Read more