recentpopularlog in

TLS

« earlier   
smallstep - Everything you should know about certificates and PKI but are too afraid to ask
- A certificate can be interpreted as the statement: “Some Issuer says Bob’s public key is 01:23:42…“

- Remember: certificates and PKI bind names to public keys.

- You’ll need to decide what type of key you want to use. That’s another post entirely, but here’s some quick guidance (as of December 2018). There’s a slow but ongoing transition from RSA to elliptic curve keys (ECDSA or EdDSA). If you decide to use RSA keys make them at least 2048 bits, and don’t bother with anything bigger than 409...
signing  der  pem  tls  pki  certificates  security  certs  crypto  openssl  best  details  certificate 
yesterday by hellsten
mholt/certmagic: Automatic HTTPS for any Go program: fully-managed TLS certificate issuance and renewal
Automatic HTTPS for any Go program: fully-managed TLS certificate issuance and renewal - mholt/certmagic
golang  tls  certificates 
5 days ago by geetarista
Automagical HTTPS with Docker and Go
It all starts with the acme/autocert package.
docker  golang  https  tls 
5 days ago by lidel
FIGHTING BACK AGAINST SSL INSPECTION, OR HOW SSL SHOULD WORK - Independent Security Evaluators
A solution for resisting SSL interception without breaking compatibility or requiring cooperation with third parties is needed. The SSL/TLS protocol allows not only servers to authenticate themselves using certificates, but clients as well. Client certificates are widely popular in some government agencies and countries, such as Estonia [27], but are not used by websites catering to the general (US) public. Interestingly, client certificates allow us to sidestep the interception problem.
tls  security 
6 days ago by jhealy
Zscaler Intermediate Certificate - Stack Overflow
Zscaler apparently allows SSL inspection to be controlled per-domain
tls  security 
7 days ago by jhealy

Copy this bookmark:





to read