Upgrade to PRO for Only $50/Year—Limited-Time Offer! 🔥

HTTPS by default - no more clear

Avatar for oxdef oxdef
May 23, 2017
Programming
0
34

HTTPS by default - no more clear

Phdays 2017

Avatar for oxdef

oxdef

May 23, 2017
Tweet

More Decks by oxdef

See All by oxdef
How to improve software security with OWASP open source initiatives
Avatar for oxdef oxdef
0
230
Keynote at ZeroNights X (2021)
Avatar for oxdef oxdef
0
190
Security Culture: Here be Hackers
Avatar for oxdef oxdef
0
540
OWASP Top 10 - 2017 What’s inside?
Avatar for oxdef oxdef
0
620
И разработчик станет хакером!
Avatar for oxdef oxdef
0
51
Implementing Content Security Policy at a Large Scale
Avatar for oxdef oxdef
0
630
Security in developer’s life: knowledge is power
Avatar for oxdef oxdef
0
380
Web Application Security: future standards and technologies
Avatar for oxdef oxdef
0
390
Content Security Policy - the panacea for XSS or placebo?
Avatar for oxdef oxdef
0
420

Other Decks in Programming

See All in Programming
宅宅自以為的浪漫:跟 AI 一起為自己辦的研討會寫一個售票系統
Avatar for 高見龍 eddie
0
470
手軽に積ん読を増やすには?/読みたい本と付き合うには?
Avatar for hideki kinjyo o0h
PRO
1
140
配送計画の均等化機能を提供する取り組みについて(⽩⾦鉱業 Meetup Vol.21@六本⽊(数理最適化編))
Avatar for 伊豆原基人 izu_nori
0
120
C-Shared Buildで突破するAI Agent バックテストの壁
Avatar for po3rin po3rin
0
180
レイトレZ世代に捧ぐ、今からレイトレを始めるための小径
Avatar for ichi-raven ichi_raven
0
490
All(?) About Point Sets
Avatar for hole hole
0
260
React Native New Architecture 移行実践報告
Avatar for taminif taminif
1
130
AIコーディングエージェント(Manus)
Avatar for kondai kondai24
0
120
TVerのWeb内製化 - 開発スピードと品質を両立させるまでの道のり
Avatar for TVer Inc. techtver
PRO
3
1.4k
【Streamlit x Snowflake】データ基盤からアプリ開発・AI活用まで、すべてをSnowflake内で実現
Avatar for Ayumu Yamaguchi ayumu_yamaguchi
1
110
ID管理機能開発の裏側 高速にSaaS連携を実現したチームのAI活用編
Avatar for Atsushi Kawamura (atzz/a2c) atzzcokek
0
190
Google Antigravity and Vibe Coding: Agentic Development Guide
Avatar for MIKIO KUBO mickey_kubo
2
130

Featured

See All Featured
Templates, Plugins, & Blocks: Oh My! Creating the theme that thinks of everything
Avatar for Michelle Schulp Hunt marktimemedia
31
2.6k
Put a Button on it: Removing Barriers to Going Fast.
Avatar for kastner kastner
60
4.1k
Testing 201, or: Great Expectations
Avatar for Joseph Mastey jmmastey
46
7.8k
Designing for Performance
Avatar for Lara Hogan lara
610
69k
Git: the NoSQL Database
Avatar for Brandon Keepers bkeepers
PRO
432
66k
Automating Front-end Workflow
Avatar for Addy Osmani addyosmani
1371
200k
Statistics for Hackers
Avatar for Jake VanderPlas jakevdp
799
230k
Product Roadmaps are Hard
Avatar for C. Todd Lombardo iamctodd
PRO
55
12k
XXLCSS - How to scale CSS and keep your sanity
Avatar for Zaharenia Atzitzikaki sugarenia
249
1.3M
How to Think Like a Performance Engineer
Avatar for Harry Roberts csswizardry
28
2.3k
Become a Pro
Avatar for Speaker Deck speakerdeck
PRO
30
5.7k
Evolution of real-time – Irina Nazarova, EuRuKo, 2024
Avatar for Irina Nazarova irinanazarova
9
1.1k

Transcript

  1. Яндекс

  2. Я HTTPS by default - no more clear text in

    the web! Taras Ivashchenko, Product security team, Y andex ндекс
  3. None

  4. Global HTTPS usage

  5. Why so slow?!

  6. None

  7. Forward Secrecy

  8. HTTPS only for the auth page is not enough!

  9. Really big project Not only web protocols Internal knowledge base

    and tools Trainings Deep tech things: TLS sessions, double certificate scheme All services moved to “HTTPS by default” mode Improved world around us ;-) At Y andex
  10. None

  11. Q&A

  12. Taras Ivashchenko Product security team Contacts [email protected]