Upgrade to Pro — share decks privately, control downloads, hide ads and more …

HTTPS by default - no more clear

Avatar for oxdef oxdef
May 23, 2017
Programming
0
32

HTTPS by default - no more clear

Phdays 2017

Avatar for oxdef

oxdef

May 23, 2017
Tweet

More Decks by oxdef

See All by oxdef
How to improve software security with OWASP open source initiatives
Avatar for oxdef oxdef
0
210
Keynote at ZeroNights X (2021)
Avatar for oxdef oxdef
0
170
Security Culture: Here be Hackers
Avatar for oxdef oxdef
0
520
OWASP Top 10 - 2017 What’s inside?
Avatar for oxdef oxdef
0
590
И разработчик станет хакером!
Avatar for oxdef oxdef
0
43
Implementing Content Security Policy at a Large Scale
Avatar for oxdef oxdef
0
610
Security in developer’s life: knowledge is power
Avatar for oxdef oxdef
0
370
Web Application Security: future standards and technologies
Avatar for oxdef oxdef
0
380
Content Security Policy - the panacea for XSS or placebo?
Avatar for oxdef oxdef
0
410

Other Decks in Programming

See All in Programming
MCPで実現するAIエージェント駆動のNext.jsアプリデバッグ手法
Avatar for NakamuraTakumi nyatinte
6
770
実践!App Intents対応
Avatar for 野瀬田 裕樹 yuukiw00w
1
340
なぜ今、Terraformの本を書いたのか? - 著者陣に聞く!『Terraformではじめる実践IaC』登壇資料
Avatar for Ryoma Fujiwara fufuhu
4
650
Honoアップデート 2025年夏
Avatar for Yusuke Wada yusukebe
1
840
コーディングは技術者(エンジニア)の嗜みでして / Learning the System Development Mindset from Rock Lady
Avatar for mackey0225 mackey0225
2
570
STUNMESH-go: Wireguard NAT穿隧工具的源起與介紹
Avatar for Date Huang tjjh89017
0
380
AIエージェント開発、DevOps and LLMOps
Avatar for Kento.Yamada ymd65536
1
340
Constant integer division faster than compiler-generated code
Avatar for herumi herumi
2
690
The State of Fluid (2025)
Avatar for Simon Praetorius s2b
0
190
ゲームの物理
Avatar for Fadis fadis
5
1.5k
実践 Dev Containers × Claude Code
Avatar for Yuto Akiba touyu
1
240
Flutterと Vibe Coding で個人開発!
Avatar for Hayami Shuhei hyshu
1
260

Featured

See All Featured
GitHub's CSS Performance
Avatar for Jon Rohan jonrohan
1031
460k
Statistics for Hackers
Avatar for Jake VanderPlas jakevdp
799
220k
Building Applications with DynamoDB
Avatar for Matt Wood mza
96
6.6k
Side Projects
Avatar for Sacha Greif sachag
455
43k
No one is an island. Learnings from fostering a developers community.
Avatar for Antonio thoeni
21
3.4k
Evolution of real-time – Irina Nazarova, EuRuKo, 2024
Avatar for Irina Nazarova irinanazarova
8
890
VelocityConf: Rendering Performance Case Studies
Avatar for Addy Osmani addyosmani
332
24k
Optimising Largest Contentful Paint
Avatar for Harry Roberts csswizardry
37
3.4k
Product Roadmaps are Hard
Avatar for C. Todd Lombardo iamctodd
PRO
54
11k
Into the Great Unknown - MozCon
Avatar for Noah Learner thekraken
40
2k
The Straight Up "How To Draw Better" Workshop
Avatar for Dennis Kardys denniskardys
236
140k
BBQ
Avatar for Matthew Crist matthewcrist
89
9.8k

Transcript

  1. Яндекс

  2. Я HTTPS by default - no more clear text in

    the web! Taras Ivashchenko, Product security team, Y andex ндекс
  3. None

  4. Global HTTPS usage

  5. Why so slow?!

  6. None

  7. Forward Secrecy

  8. HTTPS only for the auth page is not enough!

  9. Really big project Not only web protocols Internal knowledge base

    and tools Trainings Deep tech things: TLS sessions, double certificate scheme All services moved to “HTTPS by default” mode Improved world around us ;-) At Y andex
  10. None

  11. Q&A

  12. Taras Ivashchenko Product security team Contacts [email protected]