The first few milliseconds of HTTPS

Speaker: Joshua Thijssen

Abstract

What happens when your browser connects to a HTTPS secure site? We all know it has to do something with certificates, blue and green address bars and sometimes your browser will give warnings which we normally click away.

But what actually happens under the hood? In this talk I will give a step-by-step explanation on the first few hundred milliseconds during a connection to HTTPS. We will talk about master secrets, shared secrets, cipher suites, x509 certificates and why secure does not (always) mean secure.

Biography

Joshua Thijssen is a freelance consultant and trainer. His daily work consists of maintaining code bases, working on different projects and helping others to achieve higher standards in both coding and thinking. He is the lead developer of Saffire - a web/system language, author of the PHP|Architect book "Mastering the SPL library", founder of the Dutch Web Alliance and regular speaker at national and international conferences.