Fifth laboratory for the Computer Network Security (CNS) course at Tor Vergata during scholar year 2022-2023.
In the laboratory we discussed why public-key cryptography by itself is not enough to protect real world communications against Man-in-The-Middle (MiTM) attackers. To solve the remaining issues we introduce the notion of a cryptographic certificate, which is use to bind mathematics to the real world. The infrastructure which manages certificate is then called the Public-Key-Infrastructure (PKI).
In the context of the SSL/TLS protocol, the X.509 has been choosen as the standard format for public certifificates. At the end of the lecture we show how to setup an HTTPs server using OpenSSL and nginx.
Links to the material of the lecture:
For any doubts feel free to contact me.
Thank you.