Cryptography: Learn Public Key Infrastructure from Scratch

Cryptography: Learn Public Key Infrastructure from Scratch

by Himanshu Rana, Himanshu Rana
Released September 2020
Publisher(s): Packt Publishing
ISBN: 9781800565463

Read it now on the O’Reilly learning platform with a 10-day free trial.

O’Reilly members get unlimited access to books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Video description

This video course will show you find out how Secure Sockets Layer (SSL) works on websites and help you understand the significance of digital certificates in securing communication between two entities such as a client and a web server. You’ll also gain the knowledge and skills needed to deploy and manage two-tier PKI on Windows Servers to support applications that require certificate-based security.

The video course begins with an introduction to PKI, taking you through the components and uses of PKI and digital certificates. Next, you'll find out how cryptography secures the transmission of online data by using encryption methods and algorithms. Moving ahead, you'll delve into interesting activities to learn about certification authority (CA), certificate requests, and certificate services. You’ll also learn how to configure Network Device Enrollment Service (NDES), Certificate Enrollment Service (CES), and Certificate Enrollment Policy (CEP). The course ends with a bonus topic that introduces you to the process of migrating hashing algorithms from SHA1 to SHA2 on Windows Server 2016.

By the end of this course, you'll have developed the skills needed to deploy and configure PKI on Windows Servers.

What You Will Learn

  • Install, configure, and manage two-tier PKI on Windows Server 2012 R2
  • Understand how encryption and decryption work together
  • Find out how SSL certificates are used to secure websites
  • Configure CDP/CIA extensions and OCSP servers
  • Discover how standalone machines request certificates using NDES and CEP/CES
  • Migrate hashing algorithms from SHA1 to SHA2 (SHA256) on two-tier PKI

Audience

This video course is for beginners, IT professionals, and cybersecurity experts who want to deploy and manage PKI on Windows Servers. A basic understanding of Windows Servers and networking?is recommended to get started with this course.

About The Author

Himanshu Rana: Himanshu Rana is a consultant, and his primary focus is on Windows Active Directory, PKI, ADFS, and Microsoft Azure. He has been in this industry for over 11 years and has worked on a variety of projects for various clients. He has been employed as a corporate trainer in one of the best offshore training companies and delivered corporate training on various Microsoft certifications to students all over the globe. Being a Microsoft Certified Trainer, he still follows his passion for teaching.

Table of contents

  1. Chapter 1 : Introduction
    1. Course Introduction
  2. Chapter 2 : Overview of Public Key Infrastructure
    1. What is PKI
    2. Uses of PKI
    3. Components of PKI Solution
    4. What is a Digital Certificate
  3. Chapter 3 : Overview of Cryptography
    1. What Cryptography is all about
    2. Symmetric and Asymmetric Encryption
    3. What is Digital Signing
    4. Encryption Algorithms
    5. Hashing Algorithms
  4. Chapter 4 : Certification Authority or CA
    1. overview of CA
    2. Public Vs Private CA
    3. Root and Subordinate CAs
    4. Stand-Alone vs Enterprise CAs
    5. Consideration for Implementing CA Hierarchy - Root and Subordinates
    6. Hands-On Installing a Standalone Root CA
    7. Hands-On Installing an Enterprise Subordinate CA
  5. Chapter 5 : Certificate Request or Enrollment Methods
    1. Certificate Request or Enrollment - Introduction
    2. Certificate Templates
    3. Types of Certificate Enrollment
    4. Hands-On Requesting a Certificate using web Enrollment
    5. Hands-On Requesting a Certificate using MMC
    6. Hands-On Requesting a Certificate using Auto-enrollment
    7. Hands-On Requesting a Certificate Offline using (CSR)
    8. Hands-On Securing a Website using Certificate
    9. Hands-On Encrypting and Decrypting a File with Certificate
  6. Chapter 6 : Configuring CA Properties
    1. Configuring CA Administration and Security
    2. Configuring CA Policy and Exit Modules
    3. Understanding CRLs, AIA and CDP Extensions
    4. Configuring AIA and CDP Extension
  7. Chapter 7 : New Roles in Certificate Services
    1. New Roles in Certificate Services - Introduction
    2. Network Device Enrollment Service (NDES)
    3. Configuring NDES - Part One
    4. Configuring NDES - Part Two
    5. Understanding CEP and CES a.k.a. Enrollment Agents
    6. Configuring CEP and CES
    7. Online Responder a.k.a. OCSP
    8. Configuring an Online Responder or OCSP
  8. Chapter 8 : Migrating Hashing Algorithm from SHA1 to SHA2 on Windows Server 2016 CA
    1. Installing Root CA on Windows Server 2016
    2. Installing Subordinate CA on Windows Server 2016
    3. Planning Before Migrating Hashing Algorithm from SHA1 to SHA2
    4. Migrating Hashing Algorithm from SHA1 to SHA2 on RootCA
    5. Migrating Hashing Algorithm from SHA1 to SHA2 on Subordinate CA
    6. Thank You

Product information

  • Title: Cryptography: Learn Public Key Infrastructure from Scratch
  • Author(s): Himanshu Rana, Himanshu Rana
  • Release date: September 2020
  • Publisher(s): Packt Publishing
  • ISBN: 9781800565463