Thanks a lot for watching! You can learn more about Tech School on this page: bit.ly/m/techschool You'll find some Udemy courses created by TechSchool, an invitation link to our Discord server, our GitHub repositories, etc.
Just wanted to take a minute to thank you for posting this. It may just well be the most comprehensive breakdown I've found concerning the differences between TLS 1.2 and 1.3. I've watched it maybe 3 or 4 times and it's just as great each time.
You are an excellent teacher. Discovering your channel is the best thing that has happened to me. I'm currently taking the go master backend course. Thank you so much.
This may be one of the best teaching videos on any subject I've seen on CZcams, and definitely one of the best videos on HTTPS and SSL and TLS. If you already have a background in web application development and web application security, the concepts in the video are well explained and the diagrams and graphics enhance the explanation. If you are having problems understanding the content of the video, I'd suggest getting a basic understanding of web application security first. Great job! :)
This is my first comment ever on the CZcams, after watching millions of videos😁 Two words only for this video: *Simply Awesome*😎 Subscribed your channel immediately, while watching this video. Hope you continue creating amazing content for the geeks.👍
This is one of the best ssl/tls video. He covered all the required detail in very simple steps. I tried looking even videos on udemy and other paid site. This is far better and detailed. Thank you very much for creating such content and sharing it for free..
Fantastic video. Not just educational, but very well structured and explained - useful for security professionals to use as a benchmark for explaining TLS. Keep up the good work.
Truly amazing...it distills 30 hours of college learning and research into 37 mins that effectively connects the dots on Https, tls, CA, pki, ahead, ssl, dh, etc. Thanks.
by far the most well explained tutorial about TLS. So, when studying TLS and OpenSSL library and all the crazy name protocols ciphers as TLS_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA256, so on so forth... Now it makes lots of sense! If in the future you remake this video, please bringing an example like OpenSSL ciphers would be the killer master super ultra mega power video tutorial :D You have got a subscriber. Thank you for your work.
This is one of the most awesome video I have ever seen.. All those terminologies I have been reading.. HKDF, AEAD etc etc.. never made sense to me until now!!!
Excellent presentation and I greatly appreciate all the hard work in building such detailed slides. Also love the live demo in the chrome browser in the end. Thank you!
Very nice and video I have been looking for many years, found it now that has so many details of the key/message handshake between the client and the server which I am looking for. I am not currently working on SSL/TLS but was very curious to know how the key exchange is done and what is signing, what is a certificate etc.. One word it is excellent! But I need to watch this video many time to obsorb all the concepts used. Will keep watching your similar videos again.
This is the best explained video i've seen about this topic, after more than 20 video s this one resumes more than 5 hours of content in just 38 minutes. Pls keep going with the channel :D.
Wow. This was by far the most awesome vid I have ever seen. I am completely new to tech and I feel like I have a good grasp on how encryption works now. You are an amazing teacher.
I'm so happy I could find this video. A would have to agree with the other comments. It is an exceptional video. This is one of the best explanation videos I've seen so far in youtube and exactly what I was looking for. Thanks very much!
WOW WOW WOW...!!!! This is amazing, and a lot over my head, but it's SO WELL EXPLAINED.... I'm using OpenSSL 1.1.1f on Linux and going through the excercise of creating certificate chains for EAP-TLS and my struggles have resulted in some good learning... However, I never understood the underlying math and techniques to make it all work... THANK YOU....!
One mistake at 27:35 - you cannot decrypt a signature using someone's else public key. On that slide a verifier calculates hash first, then ENCRYPTs with signer's public key and then compares ENCRYPTED hashes.
Hey Paul, What you said is not correct. For digital signature, we sign (encrypt) with private key, and verify (decrypt) with public key. Besides, you cannot compare the 2 encrypted hashes because every time you encrypt, the output value will be different (even if the input is the same). So we can only compare the 2 hashes (not their encrypted values) You can read more about this from other sources like DocuSign (a very famous digital document signing service): www.docusign.com/how-it-works/electronic-signature/digital-signature/digital-signature-faq
This usage of the PKI is very obscure and easily misunderstood as one can see in this post. You should know you are not the first one to run into this. Thanks to TECH SCHOOL for clarifying this comment and also for the excellent material you have put together here.
Hello this one of the best educational videos I have seen .I am very interested if you can tell us the tool which you used to make this video .As I am too a teacher.
Hi Jo, the static private key saved on the server is paired with the certificate (public key) for **authenticate** the server. The ephemeral key, on the other hand, is used for **data encryption** . For each new session, during the key exchange process, client & server will generate a different Diffie Hellman private key (the number number "a"), and use it to come up with a new ephemeral symmetric secret key to encrypt the data.
It's not accurate to say attackers need to solve the value of a and b in order to find the final key in DH exchange. DH problem is that given g, p, g^a mod p and g^b mod p, find g^(ab) mod p. Finding a and b is one approach but not necessary the only way.
I have a question it may be silly but plz respond. browsers have a list of certificate authorities and can verify certificates, how does node js, .net or any other programming platform verify certificates, as we can use axios, HttpClient etc to make HTTPS requests from our code? 🙄
Hey Syam, On the client side, browsers verify the TLS certificates & decrypt the data automatically for you, so in the code, you don't have to do anything. On the server side, HTTPS requests are normally handled (verified & decrypt) by a load balancer (such as Nginx) before they are forwarded to your backend server code. So your server code doesn't need to deal with the certificates either. (You can watch my video about it here: czcams.com/video/nU4FTjrgSKI/video.html)
And what if Harry gets a certificate from bob and then becomes a middle man attacker and sends the same certificate? Will he be perceived as trustworthy or no? And if no, why?
I'm sorry but couldn't understand most of it. Animations are great, but speed is too much and explanation is weak. If you can spread a playlist on security over 15, 20 lectures like you did for GRPC, I promise you it'll be a hit. In current form, it's not very understandable.
Thanks a lot for watching! You can learn more about Tech School on this page: bit.ly/m/techschool
You'll find some Udemy courses created by TechSchool, an invitation link to our Discord server, our GitHub repositories, etc.
Just wanted to take a minute to thank you for posting this. It may just well be the most comprehensive breakdown I've found concerning the differences between TLS 1.2 and 1.3. I've watched it maybe 3 or 4 times and it's just as great each time.
Thank you for contributing to all of our learning and growth!
You are an excellent teacher. Discovering your channel is the best thing that has happened to me. I'm currently taking the go master backend course. Thank you so much.
This may be one of the best teaching videos on any subject I've seen on CZcams, and definitely one of the best videos on HTTPS and SSL and TLS. If you already have a background in web application development and web application security, the concepts in the video are well explained and the diagrams and graphics enhance the explanation. If you are having problems understanding the content of the video, I'd suggest getting a basic understanding of web application security first.
Great job! :)
Great to hear! Thank you, Carl!
This channel is an absolute goldmine. I hope you keep making videos to help everyone learn these complicated topics.
Thanks, will do!
This is my first comment ever on the CZcams, after watching millions of videos😁
Two words only for this video: *Simply Awesome*😎
Subscribed your channel immediately, while watching this video. Hope you continue creating amazing content for the geeks.👍
Thanks a lot, Vivek! I'm very happy to hear that!
Best explanation about TLS I've ever seen. Thanks for your great work.
Glad it was helpful!
This is one of the best ssl/tls video. He covered all the required detail in very simple steps. I tried looking even videos on udemy and other paid site. This is far better and detailed. Thank you very much for creating such content and sharing it for free..
Glad you liked it!
Fantastic video. Not just educational, but very well structured and explained - useful for security professionals to use as a benchmark for explaining TLS. Keep up the good work.
Glad you enjoyed it!
WOW. This is an amazing video explaining TLS in a detailed consumable way. Really, really awesome stuff.
Exceptional content! The attention to detail to cover each aspect made it easy to visualize what would otherwise be a difficult topic to follow.
Glad you enjoyed it!
By far the most comprehensive and easy to understand video on TLS I have come across. Keep up the great work!!
Thanks, will do!
Truly amazing...it distills 30 hours of college learning and research into 37 mins that effectively connects the dots on Https, tls, CA, pki, ahead, ssl, dh, etc. Thanks.
Thank you! I'm glad you like it!
From Korea:) and watching this because I have an IT test tomorrow in school thanks a lot for the information I wondered what exactly means TLS and SSL
Hi!
TLS stands for "Transport Layer Security"
and SSL stands for "Secure Sockets Layer"
Thanks for the video. This is complete explanation of TLS/SSL
Glad you liked it!
The best explanation of TLS I have ever seen.
Thank you!
Just wanted to say this video is very well made. Kudos
Thank you!
by far the most well explained tutorial about TLS. So, when studying TLS and OpenSSL library and all the crazy name protocols ciphers as TLS_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA256, so on so forth... Now it makes lots of sense! If in the future you remake this video, please bringing an example like OpenSSL ciphers would be the killer master super ultra mega power video tutorial :D You have got a subscriber. Thank you for your work.
Thanks Kaio! I already made a video about how to use OpenSSL here: czcams.com/video/7YgaZIFn7mY/video.html
It is the best tutorial and text in the youtube which I've ever watched.
Thanks a lot, Eda!
Great tutorial. Working is ssl/tls everyday and didn't know the basics. Thanks
Glad it was helpful!
Excellent video
This is one of the most awesome video I have ever seen.. All those terminologies I have been reading.. HKDF, AEAD etc etc.. never made sense to me until now!!!
Wow, thank you!
amazing extensive explanation
Excellent presentation and I greatly appreciate all the hard work in building such detailed slides.
Also love the live demo in the chrome browser in the end. Thank you!
Thanks you! Glad you liked it!
very high detail explanation! thanks
Definitely needs some reading materials! Good job
Yes! Thank you!
Very nice and video I have been looking for many years, found it now that has so many details of the key/message handshake between the client and the server which I am looking for. I am not currently working on SSL/TLS but was very curious to know how the key exchange is done and what is signing, what is a certificate etc.. One word it is excellent! But I need to watch this video many time to obsorb all the concepts used. Will keep watching your similar videos again.
Thank you! Glad it was helpful!
This is the best explained video i've seen about this topic, after more than 20 video s this one resumes more than 5 hours of content in just 38 minutes. Pls keep going with the channel :D.
Wow, thanks!
Fantastic! Not only the TLS. This video explains many concept in cryptography.
Much appreciated!
Thank you for the great video, easy to understand, well structure and detail enough.
Glad you enjoyed it!
Excellent video. I've not quite understood some cryptography concepts for a long time until I watched this video. Very thorough. Keep going man!
Thanks! Glad you enjoyed it!
Beautiful explanation of a difficult subject. Thank you!
Glad you enjoyed it!
excellent video. thanks for sharing this video. still cant believe its free. thanks again
Thanks for watching!
Wow. This was by far the most awesome vid I have ever seen. I am completely new to tech and I feel like I have a good grasp on how encryption works now. You are an amazing teacher.
Awesome, thank you!
Thanks a lot for the sharing. Very detail and always correlated to the actual process. Thank you
My pleasure!
I'm so happy I could find this video. A would have to agree with the other comments. It is an exceptional video. This is one of the best explanation videos I've seen so far in youtube and exactly what I was looking for. Thanks very much!
Wow, thank you!
Excellent video. I watch a ton of videos about this topic and this video is one of the best.
Glad it was helpful!
This was explained sooo beautifully! Well done!
I especially liked how you kept explaining the ‘why’ before you commenced on a deeper topic. Superb 👌
Thank you so much!
@@TECHSCHOOLGURU definitely going to share around 👍👍
My go to reference video for this topic.
Hoping to add many more videos…
This helped a lot, thanks.
Glad to hear it!
WOW WOW WOW...!!!! This is amazing, and a lot over my head, but it's SO WELL EXPLAINED....
I'm using OpenSSL 1.1.1f on Linux and going through the excercise of creating certificate chains for EAP-TLS and my struggles have resulted in some good learning...
However, I never understood the underlying math and techniques to make it all work... THANK YOU....!
Thanks, Dave! Great to hear!
Truly a brilliant explanation of TLS. I'm much obliged to him. thanks a ton.
Thanks! Glad you enjoyed it!
Great balance between details and topic coverage. Awesome resource!
Much appreciated!
Wonderful explaination. Just brillinat and organic.
Thank you!
go harry i know u can do this if not now in future u will be able to decode everything keep grinding i am rooting for you 😉😉
I will try my best!
amazing video hats down to you
Thank you!
Awesome video. Thanks for sharing.
Thanks for watching!
very good explanation of tls, it covers a lot of ground. Well done.
Thank you!
Love the illustration! very detailed explanation, great channel, thanks a lot.
Glad you like it!
Very good quick and simple to understand tutorial!
Glad you think so!
A really good explanation. Well done!
Thank you!
excellent video.
Excellent walk-through of a complex topic :-)
Thanks, Richard!
Very nice courses including the backend course!!!
Thanks! Glad you like them!
Well organized presentation! I would definitely refer.
Much appreciated!
amazing video
What a great presentation, Thank you so much for your time and effort on this, I definitely learned a lot :)
Great to hear!
amazing work! Thanks a lot, your animation is elegant! Of course Ive learned a lot!
Awesome, thank you!
Good Video. Complex topic in simple words
Thank you, Pavil!
perfect, thanks a lot
Welcome!
Subscribed, very good video! and the explanation is flawless
Thanks and welcome!
I've Watched and watched and watching 👀 to know more thanks for your Efforts.
Much appreciated!
thank you very much for your channel!
Welcome!!
Great article. Very clear and with details.
Thank you!
i have a backend security dev interview in wednesday, thanks a lottttt
Happy to help!
Very good video
Thanks!
One mistake at 27:35 - you cannot decrypt a signature using someone's else public key. On that slide a verifier calculates hash first, then ENCRYPTs with signer's public key and then compares ENCRYPTED hashes.
Hey Paul,
What you said is not correct. For digital signature, we sign (encrypt) with private key, and verify (decrypt) with public key. Besides, you cannot compare the 2 encrypted hashes because every time you encrypt, the output value will be different (even if the input is the same). So we can only compare the 2 hashes (not their encrypted values)
You can read more about this from other sources like DocuSign (a very famous digital document signing service): www.docusign.com/how-it-works/electronic-signature/digital-signature/digital-signature-faq
This usage of the PKI is very obscure and easily misunderstood as one can see in this post. You should know you are not the first one to run into this. Thanks to TECH SCHOOL for clarifying this comment and also for the excellent material you have put together here.
Amazingly detailed thanks
Thanks!
Nice tutorial! Thanks.
Thank you!
just amazing. so, thank you
Thank you too!
Thank you
Thanks for watching!
best on youtube.
Thank you!
Great video, thanks a lots.
You are welcome!
Thanks!
thank you!
Thanks for the course, could you please elaborate on why they ended up with S ??? @12:00
Thank you very much!
Welcome!
amazing.!!
Thank you! Cheers!
And why do we need Diffie-Hellman in TLS ? When is it used? Isn't a signed certificate with a public key enough?
Hello this one of the best educational videos I have seen .I am very interested if you can tell us the tool which you used to make this video .As I am too a teacher.
Thanks, Anish!
I used QuickTime to record and Final Cut Pro to edit the videos.
I used canva.com to make the presentation.
@@TECHSCHOOLGURU Thank you so much for sending the information. You are such a great teacher . Keep helping people like this . Thanks again.
Thanks for this! I have a question though, isn't the private key saved on the server, how do we achieve ephemeral?
Hi Jo, the static private key saved on the server is paired with the certificate (public key) for **authenticate** the server.
The ephemeral key, on the other hand, is used for **data encryption** . For each new session, during the key exchange process, client & server will generate a different Diffie Hellman private key (the number number "a"), and use it to come up with a new ephemeral symmetric secret key to encrypt the data.
Ah, thank you for the detailed answer!
Keep up
Thanks!
It's not accurate to say attackers need to solve the value of a and b in order to find the final key in DH exchange.
DH problem is that given g, p, g^a mod p and g^b mod p, find g^(ab) mod p. Finding a and b is one approach but not necessary the only way.
yes, you're absolutely right, Tue :D
Best video to understand pki
Thank you!
do websites like discord, instagram uses SSL or TSL?
I have a question it may be silly but plz respond.
browsers have a list of certificate authorities and can verify certificates, how does node js, .net or any other programming platform verify certificates, as we can use axios, HttpClient etc to make HTTPS requests from our code? 🙄
Hey Syam,
On the client side, browsers verify the TLS certificates & decrypt the data automatically for you, so in the code, you don't have to do anything.
On the server side, HTTPS requests are normally handled (verified & decrypt) by a load balancer (such as Nginx) before they are forwarded to your backend server code. So your server code doesn't need to deal with the certificates either. (You can watch my video about it here: czcams.com/video/nU4FTjrgSKI/video.html)
@@TECHSCHOOLGURU thanks😍
làm bản việt đi anh, em học môn nhập môn attt rồi mà xem vẫn k hiểu.
Anh làm Tiếng Anh để nhiều người xem được hơn. Hiện giờ anh chưa có thời gian dịch sang TV. Em học CNTT thì nên chịu khó học thêm tiếng Anh nhé :D
And what if Harry gets a certificate from bob and then becomes a middle man attacker and sends the same certificate? Will he be perceived as trustworthy or no? And if no, why?
but someone manage Public Key,
what do you mean, Roytman?
Fuck movies bro this is the real entertainment. God this is mad interesting. Harry the Villain!
hay anh eei tặng 1 sub
Thanks em :D
czcams.com/video/-f4Gbk-U758/video.html is the graph EEC is ECC?
and your slideshow quality is so great !!
Kemey ke
I'm sorry but couldn't understand most of it. Animations are great, but speed is too much and explanation is weak. If you can spread a playlist on security over 15, 20 lectures like you did for GRPC, I promise you it'll be a hit. In current form, it's not very understandable.
Thanks for the suggestion. I will think about it.
Excellent video
Great video
Thanks!
thank you
Welcome!