Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
HTTPS by default - no more clear
Search
oxdef
May 23, 2017
Programming
0
32
HTTPS by default - no more clear
Phdays 2017
oxdef
May 23, 2017
Tweet
Share
More Decks by oxdef
See All by oxdef
How to improve software security with OWASP open source initiatives
oxdef
0
210
Keynote at ZeroNights X (2021)
oxdef
0
170
Security Culture: Here be Hackers
oxdef
0
520
OWASP Top 10 - 2017 What’s inside?
oxdef
0
580
И разработчик станет хакером!
oxdef
0
43
Implementing Content Security Policy at a Large Scale
oxdef
0
600
Security in developer’s life: knowledge is power
oxdef
0
370
Web Application Security: future standards and technologies
oxdef
0
370
Content Security Policy - the panacea for XSS or placebo?
oxdef
0
410
Other Decks in Programming
See All in Programming
AIに安心して任せるためにTypeScriptで一意な型を作ろう
arfes0e2b3c
0
330
PHPカンファレンス関西2025 基調講演
sugimotokei
6
1.1k
Advanced Micro Frontends: Multi Version/ Framework Scenarios
manfredsteyer
PRO
0
140
Claude Code で Astro blog を Pages から Workers へ移行してみた
codehex
0
170
Bedrock AgentCore ObservabilityによるAIエージェントの運用
licux
8
560
Vibe coding コードレビュー
kinopeee
0
400
オホーツクでコミュニティを立ち上げた理由―地方出身プログラマの挑戦 / TechRAMEN 2025 Conference
lemonade_37
1
430
DMMを支える決済基盤の技術的負債にどう立ち向かうか / Addressing Technical Debt in Payment Infrastructure
yoshiyoshifujii
5
750
[DevinMeetupTokyo2025] コード書かせないDevinの使い方
takumiyoshikawa
2
250
はじめてのWeb API体験 ー 飲食店検索アプリを作ろうー
akinko_0915
0
180
GitHub Copilotの全体像と活用のヒント AI駆動開発の最初の一歩
74th
6
1.6k
What's new in Adaptive Android development
fornewid
0
130
Featured
See All Featured
Into the Great Unknown - MozCon
thekraken
40
2k
Visualizing Your Data: Incorporating Mongo into Loggly Infrastructure
mongodb
47
9.6k
How STYLIGHT went responsive
nonsquared
100
5.7k
Measuring & Analyzing Core Web Vitals
bluesmoon
7
540
Faster Mobile Websites
deanohume
308
31k
Practical Tips for Bootstrapping Information Extraction Pipelines
honnibal
PRO
21
1.4k
Testing 201, or: Great Expectations
jmmastey
45
7.6k
What’s in a name? Adding method to the madness
productmarketing
PRO
23
3.6k
[RailsConf 2023 Opening Keynote] The Magic of Rails
eileencodes
29
9.6k
Design and Strategy: How to Deal with People Who Don’t "Get" Design
morganepeng
130
19k
Done Done
chrislema
185
16k
How To Stay Up To Date on Web Technology
chriscoyier
790
250k
Transcript
Яндекс
Я HTTPS by default - no more clear text in
the web! Taras Ivashchenko, Product security team, Y andex ндекс
None
Global HTTPS usage
Why so slow?!
None
Forward Secrecy
HTTPS only for the auth page is not enough!
Really big project Not only web protocols Internal knowledge base
and tools Trainings Deep tech things: TLS sessions, double certificate scheme All services moved to “HTTPS by default” mode Improved world around us ;-) At Y andex
None
Q&A
Taras Ivashchenko Product security team Contacts
[email protected]
oxdef
arfes0e2b3c
sugimotokei
manfredsteyer
codehex
licux
kinopeee
lemonade_37
yoshiyoshifujii
takumiyoshikawa
akinko_0915
74th
fornewid
thekraken
mongodb
nonsquared
bluesmoon
deanohume
honnibal
jmmastey
productmarketing
eileencodes
morganepeng
chrislema
chriscoyier
![Taras Ivashchenko Product security team Contacts [email protected]](https://files.speakerdeck.com/presentations/77d4b43979e3496a9aa644cc335d3a20/slide_11.jpg){kind=link}