SLIDE 1
LET’S ENCRYPT
Olivier Yiptong
- yiptong@mozilla.com
LETS ENCRYPT Olivier Yiptong oyiptong@mozilla.com PRIVACY MATTERS - - PowerPoint PPT Presentation
LETS ENCRYPT Olivier Yiptong oyiptong@mozilla.com PRIVACY MATTERS - - PowerPoint PPT Presentation
LETS ENCRYPT Olivier Yiptong oyiptong@mozilla.com PRIVACY MATTERS PRIVACY MATTERS: HTTPS Con fi dentiality Data Integrity Authentication NO PRIVACY: HTTP Public-only communication (Possibly?) Tampered messages Of
SLIDE 2
SLIDE 3
PRIVACY MATTERS: HTTPS
- Confidentiality
- Data Integrity
- Authentication
SLIDE 4
NO PRIVACY: HTTP
- Public-only communication
- (Possibly?) Tampered messages
- Of dubious origin
SLIDE 5
PUBLIC COMMUNICATIONS
SLIDE 6
PUBLIC COMMUNICATIONS
- Firesheep
SLIDE 7
PUBLIC COMMUNICATIONS
- Firesheep
SLIDE 8
PUBLIC COMMUNICATIONS
- Firesheep
- AT&T
SLIDE 9
TAMPERING
SLIDE 10
TAMPERING
- Verizon Perma-Cookies
SLIDE 11
TAMPERING
- Verizon Perma-Cookies
SLIDE 12
TAMPERING
- Verizon Perma-Cookies
- Comcast ad injection
SLIDE 13
TAMPERING
- Verizon Perma-Cookies
- Comcast ad injection
- China - GitHub
SLIDE 14
OF DUBIOUS ORIGIN
SLIDE 15
- Turk Telecom
OF DUBIOUS ORIGIN
SLIDE 16
- Turk Telecom
- China Netcom
OF DUBIOUS ORIGIN
SLIDE 17
- Turk Telecom
- China Netcom
- AT&T
OF DUBIOUS ORIGIN
SLIDE 18
PRIVACY MATTERS: HTTPS
- Encryption (Private communication)
- Data Integrity (Certainly untampered)
- Authentication (Certain of origin)
SLIDE 19
HTTPS FOR YOU
- Remove industrial espionage vector
- No customer hijacking
- No impersonation
SLIDE 20
HTTP DEPRECATION
- Firefox: non-secure website won’t have access to
new features
- Chrome: display websites over HTTP as non-
secure
SLIDE 21
UPCOMING FUNCTIONALITY
- HTTP/2 (TLS-only on Firefox, Chrome and IE)
- bandwidth + latency gains
- Advanced Caching (ServiceWorkers)
SLIDE 22
POSSIBLE UPGRADE PATH
- Referrer Policy
http://www.w3.org/TR/referrer-policy
- Upgrade Insecure Requests
http://www.w3.org/TR/upgrade-insecure-requests/
SLIDE 23
THANKS
- yiptong@mozilla.com