Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
HTTPS by default - no more clear
Search
oxdef
May 23, 2017
Programming
36
0
Share
Embed
Copy iframe code
Copy JS code
Copy link
Start on current slide
HTTPS by default - no more clear
Phdays 2017
oxdef
May 23, 2017
More Decks by oxdef
See All by oxdef
How to improve software security with OWASP open source initiatives
oxdef
0
270
Keynote at ZeroNights X (2021)
oxdef
0
230
Security Culture: Here be Hackers
oxdef
0
570
OWASP Top 10 - 2017 What’s inside?
oxdef
0
660
И разработчик станет хакером!
oxdef
0
64
Implementing Content Security Policy at a Large Scale
oxdef
0
680
Security in developer’s life: knowledge is power
oxdef
0
410
Web Application Security: future standards and technologies
oxdef
0
420
Content Security Policy - the panacea for XSS or placebo?
oxdef
0
440
Other Decks in Programming
See All in Programming
oxlintはeslint/typescript-eslintを置き換えられるのか
shomafujita
2
320
TypeScript+Orvalで実現する型安全かつ堅牢でスケーラブルなマルチチャネル通知基盤 / TSKaigi Night talks ~after conference~
d0riven
0
290
SPMマルチモジュールで テストカバレッジを取得する技法
yosshi4486
0
140
AI 時代のソフトウェア設計の学び方
masuda220
PRO
29
12k
net-httpのHTTP/2対応について
naruse
0
440
AIエージェントと協働するCLI開発 — BunとOpenClawで学んだこと
yoshikouki
1
240
生成AI時代にこそ効くGo | Why Go Works in the Age of Generative AI
mom0tomo
8
3.1k
タクシーアプリ『GO』の バックエンド開発のおける AI利活用と若者のすべて
pyama86
3
1.9k
The Arts and Crafts of Work in the AI Era — Toward Mastery in Software Development
kuranuki
1
720
Signal Forms: Beyond the Basics @ngBaguette 2026 in Paris
manfredsteyer
PRO
0
230
tsserverとは何だったのか、これからどうなるのか
nowaki28
1
450
These Five Tricks Can Make Your Apps Greener, Cheaper, & Nicer
hollycummins
0
270
Featured
See All Featured
16th Malabo Montpellier Forum Presentation
akademiya2063
PRO
0
140
How to Create Impact in a Changing Tech Landscape [PerfNow 2023]
tammyeverts
55
3.4k
Public Speaking Without Barfing On Your Shoes - THAT 2023
reverentgeek
1
410
Design in an AI World
tapps
1
220
Dominate Local Search Results - an insider guide to GBP, reviews, and Local SEO
greggifford
PRO
0
190
Being A Developer After 40
akosma
91
590k
Put a Button on it: Removing Barriers to Going Fast.
kastner
60
4.3k
SEO in 2025: How to Prepare for the Future of Search
ipullrank
3
3.5k
GraphQLの誤解/rethinking-graphql
sonatard
75
12k
The Art of Programming - Codeland 2020
erikaheidi
57
14k
Stewardship and Sustainability of Urban and Community Forests
pwiseman
0
220
Design of three-dimensional binary manipulators for pick-and-place task avoiding obstacles (IECON2024)
konakalab
0
440
Transcript
Яндекс
Я HTTPS by default - no more clear text in
the web! Taras Ivashchenko, Product security team, Y andex ндекс
None
Global HTTPS usage
Why so slow?!
None
Forward Secrecy
HTTPS only for the auth page is not enough!
Really big project Not only web protocols Internal knowledge base
and tools Trainings Deep tech things: TLS sessions, double certificate scheme All services moved to “HTTPS by default” mode Improved world around us ;-) At Y andex
None
Q&A
Taras Ivashchenko Product security team Contacts
[email protected]
oxdef
shomafujita
d0riven
yosshi4486
masuda220
naruse
yoshikouki
mom0tomo
pyama86
kuranuki
manfredsteyer
nowaki28
hollycummins
akademiya2063
tammyeverts
reverentgeek
tapps
greggifford
akosma
kastner
ipullrank
sonatard
erikaheidi
pwiseman
konakalab
![Taras Ivashchenko Product security team Contacts [email protected]](https://files.speakerdeck.com/presentations/77d4b43979e3496a9aa644cc335d3a20/slide_11.jpg){kind=link}