Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
HTTPS by default - no more clear
Search
oxdef
May 23, 2017
Programming
0
26
HTTPS by default - no more clear
Phdays 2017
oxdef
May 23, 2017
Tweet
Share
More Decks by oxdef
See All by oxdef
How to improve software security with OWASP open source initiatives
oxdef
0
130
Keynote at ZeroNights X (2021)
oxdef
0
94
Security Culture: Here be Hackers
oxdef
0
400
OWASP Top 10 - 2017 What’s inside?
oxdef
0
370
И разработчик станет хакером!
oxdef
0
33
Implementing Content Security Policy at a Large Scale
oxdef
0
410
Security in developer’s life: knowledge is power
oxdef
0
270
Web Application Security: future standards and technologies
oxdef
0
270
Content Security Policy - the panacea for XSS or placebo?
oxdef
0
290
Other Decks in Programming
See All in Programming
Ruby Pattern Matching
bkuhlmann
0
930
GraphQLサーバの構成要素を整理する #ハッカー鮨 #tsukijigraphql / graphql server technology selection
izumin5210
4
890
Build Apps for iOS, Android & Desktop in 100% Kotlin With Compose Multiplatform (mDevCamp 2024)
zsmb
0
380
CDKコントリビュートの最初の壁を越えよう! -簡単issueの見つけ方-
badmintoncryer
2
140
OpenAPIを中心に考えるAPI開発入門 / Introduction to API Development with a Focus on OpenAPI
seike460
PRO
2
170
Introducing Kotlin Multiplatform in an existing mobile app - Workshop Edition | AndroidMakers Paris
prof18
0
130
単体テストを書かない技術 #phpcon_odawara
o0h
PRO
27
8.4k
サイコロで理解する統計的仮説検定の考え方
tatamiya
4
1k
Rubyでたのしむクリエイティブコーディング/Enjoy Creative coding with Ruby
chobishiba
1
210
FigmaとPHPで作る1ミリたりとも表示崩れしない最強の帳票印刷ソリューション
ttskch
43
19k
冗長なエラーログを削減し、スタックトレースを手に入れる / Reducing Verbose Error Logs and Obtaining Stack Traces
upamune
0
920
Scalable Customer Journey Orchestration (CJO)
lewuathe
0
380
Featured
See All Featured
Design by the Numbers
sachag
274
18k
What's new in Ruby 2.0
geeforr
337
31k
Agile that works and the tools we love
rasmusluckow
325
20k
Building an army of robots
kneath
300
41k
Exploring the Power of Turbo Streams & Action Cable | RailsConf2023
kevinliebholz
4
3.4k
Learning to Love Humans: Emotional Interface Design
aarron
267
39k
BBQ
matthewcrist
80
8.8k
個人開発の失敗を避けるイケてる考え方 / tips for indie hackers
panda_program
63
14k
Fireside Chat
paigeccino
22
2.6k
Making Projects Easy
brettharned
109
5.5k
The Psychology of Web Performance [Beyond Tellerrand 2023]
tammyeverts
10
1.5k
Templates, Plugins, & Blocks: Oh My! Creating the theme that thinks of everything
marktimemedia
20
1.7k
Transcript
Яндекс
Я HTTPS by default - no more clear text in
the web! Taras Ivashchenko, Product security team, Y andex ндекс
None
Global HTTPS usage
Why so slow?!
None
Forward Secrecy
HTTPS only for the auth page is not enough!
Really big project Not only web protocols Internal knowledge base
and tools Trainings Deep tech things: TLS sessions, double certificate scheme All services moved to “HTTPS by default” mode Improved world around us ;-) At Y andex
None
Q&A
Taras Ivashchenko Product security team Contacts
[email protected]
oxdef
bkuhlmann
izumin5210
zsmb
badmintoncryer
seike460
prof18
o0h
tatamiya
chobishiba
ttskch
upamune
lewuathe
sachag
geeforr
rasmusluckow
kneath
kevinliebholz
aarron
matthewcrist
panda_program
paigeccino
brettharned
tammyeverts
marktimemedia
![Taras Ivashchenko Product security team Contacts [email protected]](https://files.speakerdeck.com/presentations/77d4b43979e3496a9aa644cc335d3a20/slide_11.jpg){kind=link}