Chapter 12. Secure Transport

Cryptography allows us to secure the network, but this effort is wasted unless we also secure the last two feet between the screen and the user’s eyeballs. Strong cryptographic protocols are only the starting point for securing the system.

We have spent enough time reviewing past failures. It is time to look at the one unqualified success story of Internet security. SSL has performed beyond its original expectations for more than a decade. SSL does not meet every security need we recognize today, and the user experience falls short of what we want. Like any important infrastructure, SSL needs ongoing maintenance so that it meets the needs it serves today that are above and beyond the original design brief. If we understand ...

Get The dotCrime Manifesto now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.