Book Image

Modern Cryptography for Cybersecurity Professionals

By : Lisa Bock
Book Image

Modern Cryptography for Cybersecurity Professionals

By: Lisa Bock

Overview of this book

In today's world, it is important to have confidence in your data storage and transmission strategy. Cryptography can provide you with this confidentiality, integrity, authentication, and non-repudiation. But are you aware of just what exactly is involved in using cryptographic techniques? Modern Cryptography for Cybersecurity Professionals helps you to gain a better understanding of the cryptographic elements necessary to secure your data. The book begins by helping you to understand why we need to secure data and how encryption can provide protection, whether it be in motion or at rest. You'll then delve into symmetric and asymmetric encryption and discover how a hash is used. As you advance, you'll see how the public key infrastructure (PKI) and certificates build trust between parties, so that we can confidently encrypt and exchange data. Finally, you'll explore the practical applications of cryptographic techniques, including passwords, email, and blockchain technology, along with securely transmitting data using a virtual private network (VPN). By the end of this cryptography book, you'll have gained a solid understanding of cryptographic techniques and terms, learned how symmetric and asymmetric encryption and hashed are used, and recognized the importance of key management and the PKI.
Table of Contents (16 chapters)
1
Section 1: Securing Our Data
5
Section 2: Understanding Cryptographic Techniques
9
Section 3: Applying Cryptography in Today's World

Understanding TLS

For many years, consumers have been conducting transactions on the internet. Up until recently, a website could get away with not having a secure connection. However, most consumers nowadays insist on some form of encryption to protect against malicious activity.

Secure Sockets Layer (SSL)/TLS-based VPNs have been around since the early 1990s. Netscape (which later became Firefox) developed this protocol to secure traffic while on the internet. Originally known as SSL, this method was widely recognized as a way to secure traffic between clients and web browsers. The protocol has improved over the years in the following ways:

  • SSL 2.0-SSL 3.0 represent early versions of the protocol. SSL 3.0 is no longer used.
  • TLS 1.0 is essentially an upgrade of SSL 1.0; although the protocol was to be deprecated in 2020, you may still see this version in use.
  • TLS 1.1 was released in 2006. TLS 1.1 was also to be deprecated in 2020; however you may still see this...