Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
HTTPS by default - no more clear
Search
oxdef
May 23, 2017
Programming
0
33
HTTPS by default - no more clear
Phdays 2017
oxdef
May 23, 2017
Tweet
Share
More Decks by oxdef
See All by oxdef
How to improve software security with OWASP open source initiatives
oxdef
0
220
Keynote at ZeroNights X (2021)
oxdef
0
180
Security Culture: Here be Hackers
oxdef
0
530
OWASP Top 10 - 2017 What’s inside?
oxdef
0
600
И разработчик станет хакером!
oxdef
0
46
Implementing Content Security Policy at a Large Scale
oxdef
0
630
Security in developer’s life: knowledge is power
oxdef
0
370
Web Application Security: future standards and technologies
oxdef
0
390
Content Security Policy - the panacea for XSS or placebo?
oxdef
0
410
Other Decks in Programming
See All in Programming
Advance Your Career with Open Source
ivargrimstad
0
520
『毎日の移動』を支えるGoバックエンド内製開発
yutautsugi
2
240
Go言語の特性を活かした公式MCP SDKの設計
hond0413
1
230
Range on Rails ―「多重範囲型」という新たな選択肢が、複雑ロジックを劇的にシンプルにしたワケ
rizap_tech
0
130
NixOS + Kubernetesで構築する自宅サーバーのすべて
ichi_h3
0
750
Flutterで分数(Fraction)を表示する方法
koukimiura
0
130
ALL CODE BASE ARE BELONG TO STUDY
uzulla
18
3.4k
After go func(): Goroutines Through a Beginner’s Eye
97vaibhav
0
390
kiroとCodexで最高のSpec駆動開発を!!数時間で web3ネイティブなミニゲームを作ってみたよ!
mashharuki
0
170
uniqueパッケージの内部実装を支えるweak pointerの話
magavel
0
1k
CSC509 Lecture 05
javiergs
PRO
0
300
Web フロントエンドエンジニアに開かれる AI Agent プロダクト開発 - Vercel AI SDK を観察して AI Agent と仲良くなろう! #FEC余熱NIGHT
izumin5210
3
530
Featured
See All Featured
Stop Working from a Prison Cell
hatefulcrawdad
271
21k
How To Stay Up To Date on Web Technology
chriscoyier
791
250k
Creating an realtime collaboration tool: Agile Flush - .NET Oxford
marcduiker
32
2.3k
Building Adaptive Systems
keathley
43
2.8k
Navigating Team Friction
lara
190
15k
Context Engineering - Making Every Token Count
addyosmani
6
240
The Power of CSS Pseudo Elements
geoffreycrofte
79
6k
Documentation Writing (for coders)
carmenintech
75
5.1k
Fashionably flexible responsive web design (full day workshop)
malarkey
407
66k
Statistics for Hackers
jakevdp
799
220k
Product Roadmaps are Hard
iamctodd
PRO
54
11k
GraphQLの誤解/rethinking-graphql
sonatard
73
11k
Transcript
Яндекс
Я HTTPS by default - no more clear text in
the web! Taras Ivashchenko, Product security team, Y andex ндекс
None
Global HTTPS usage
Why so slow?!
None
Forward Secrecy
HTTPS only for the auth page is not enough!
Really big project Not only web protocols Internal knowledge base
and tools Trainings Deep tech things: TLS sessions, double certificate scheme All services moved to “HTTPS by default” mode Improved world around us ;-) At Y andex
None
Q&A
Taras Ivashchenko Product security team Contacts
[email protected]
oxdef
ivargrimstad
yutautsugi
%20(2)%20(1).png){kind=avatar}
hond0413
rizap_tech
ichi_h3
koukimiura
uzulla
.jpg){kind=avatar}
97vaibhav
mashharuki
magavel
javiergs
izumin5210
hatefulcrawdad
chriscoyier
marcduiker
keathley
lara
addyosmani
geoffreycrofte
carmenintech
malarkey
jakevdp
iamctodd
sonatard
![Taras Ivashchenko Product security team Contacts [email protected]](https://files.speakerdeck.com/presentations/77d4b43979e3496a9aa644cc335d3a20/slide_11.jpg){kind=link}