Upgrade to Pro — share decks privately, control downloads, hide ads and more …

HTTPS by default - no more clear

HTTPS by default - no more clear

Phdays 2017



May 23, 2017

More Decks by oxdef

Other Decks in Programming


  1. Яндекс

  2. Я HTTPS by default - no more clear text in

    the web! Taras Ivashchenko, Product security team, Y andex ндекс
  3. None
  4. Global HTTPS usage

  5. Why so slow?!

  6. None
  7. Forward Secrecy

  8. HTTPS only for the auth page is not enough!

  9. Really big project Not only web protocols Internal knowledge base

    and tools Trainings Deep tech things: TLS sessions, double certificate scheme All services moved to “HTTPS by default” mode Improved world around us ;-) At Y andex
  10. None
  11. Q&A

  12. Taras Ivashchenko Product security team Contacts oxdef@yandex-team.ru