The Most Dangerous Code in the World: Validating SSL Certificates in Non-Browser Software

Download Now
Provided by: Association for Computing Machinery
Topic: Security
Format: PDF
Originally deployed in web browsers, SSL (Secure Sockets Layer) has become the de facto standard for secure internet communications. The main purpose of SSL is to provide end-to-end security against an active, man-in-the-middle attacker. Even if the network is completely compromised - DNS is poisoned, access points and routers are controlled by the adversary, etc. SSL (Secure Sockets Layer) is the de facto standard for secure internet communications. Security of SSL connections against an active network attacker depends on correctly validating public-key certificates presented when the connection is established.
Download Now

Find By Topic