What do you think?
Rate this book
OpenSSL Cookbook
A guide to the most frequently used OpenSSL features and commands, written by Ivan Ristic.
Comprehensive coverage of OpenSSL installation, configuration, and key and certificate management Includes SSL/TLS Deployment Best Practices, a design and deployment guide Written by a well-known practitioner in the field and the author of SSL Labs and the SSL/TLS configuration assessment tool Available in a variety of digital formats (PDF, EPUB, Mobi/Kindle); no DRM Continuously updated OpenSSL Cookbook is built around one chapter from Bulletproof SSL/TLS and PKI, a larger work that provides complete coverage of SSL/TLS and PKI topics. For more information and other digital formats (PDF, EPUB, ...) please visit feistyduck.com/books/openssl-cookbook/
TABLE OF CONTENTS:
Preface
Chapter 1. OpenSSL Cookbook
Getting Started
Determine OpenSSL Version and Configuration
Building OpenSSL
Examine Available Commands
Building a Trust Store
Key and Certificate Management
Key Generation
Creating Certificate Signing Requests
Creating CSRs from Existing Certificates
Unattended CSR Generation
Signing Your Own Certificates
Creating Certificates Valid for Multiple Hostnames
Examining Certificates
Key and Certificate Conversion
Configuration
Cipher Suite Selection
Performance
Appendix A: SSL/TLS Deployment Best Practices
Introduction
1. Private Key and Certificate
1.1. Use 2048-bit Private Keys
1.2. Protect Private Keys
1.3. Ensure Sufficient Hostname Coverage
1.4. Obtain Certificates from a Reliable CA
2. Configuration
2.1. Deploy with Complete and Valid Certificate Chains
2.2. Use Only Secure Protocols
2.3. Use Only Secure Cipher Suites
2.4.
Comprehensive coverage of OpenSSL installation, configuration, and key and certificate management Includes SSL/TLS Deployment Best Practices, a design and deployment guide Written by a well-known practitioner in the field and the author of SSL Labs and the SSL/TLS configuration assessment tool Available in a variety of digital formats (PDF, EPUB, Mobi/Kindle); no DRM Continuously updated OpenSSL Cookbook is built around one chapter from Bulletproof SSL/TLS and PKI, a larger work that provides complete coverage of SSL/TLS and PKI topics. For more information and other digital formats (PDF, EPUB, ...) please visit feistyduck.com/books/openssl-cookbook/
TABLE OF CONTENTS:
Preface
Chapter 1. OpenSSL Cookbook
Getting Started
Determine OpenSSL Version and Configuration
Building OpenSSL
Examine Available Commands
Building a Trust Store
Key and Certificate Management
Key Generation
Creating Certificate Signing Requests
Creating CSRs from Existing Certificates
Unattended CSR Generation
Signing Your Own Certificates
Creating Certificates Valid for Multiple Hostnames
Examining Certificates
Key and Certificate Conversion
Configuration
Cipher Suite Selection
Performance
Appendix A: SSL/TLS Deployment Best Practices
Introduction
1. Private Key and Certificate
1.1. Use 2048-bit Private Keys
1.2. Protect Private Keys
1.3. Ensure Sufficient Hostname Coverage
1.4. Obtain Certificates from a Reliable CA
2. Configuration
2.1. Deploy with Complete and Valid Certificate Chains
2.2. Use Only Secure Protocols
2.3. Use Only Secure Cipher Suites
2.4.
- GenresTechnical
70 pages, Kindle Edition
First published October 2, 2013
5 people are currently reading
36 people want to read
Ratings & Reviews
Friends & Following
Create a free account to discover what your friends think of this book!
Community Reviews
Displaying 1 - 7 of 7 reviews
March 29, 2020
Enough detail for a common tool plus with practical examples. One more star since it is free.
December 7, 2021
Short and strict to the point. More than enough informatios in less than 100 pages.
March 3, 2022
concise explanations as well as hands-on command to understand openssl. Highly recommend
August 14, 2016
Spent two last days making one of my sites to go from C rating to A+ on Qualys and found this one. Book is too short (and too old now) to cover all the nuances for many server configurations, but has some basic mentions where to go further.
December 16, 2016
The content of this book is deprecated, i strongly recommend those who are interested by serious security and strict measures to check the version 2.1 of this book ( Released in March 2016 )
For whom it may interest, an automated online SSL service : https://www.ssllabs.com/ssltest/
For whom it may interest, an automated online SSL service : https://www.ssllabs.com/ssltest/
January 11, 2016
difficult to know who exactly this is for
September 29, 2015
As promised, a handy cookbook.
Displaying 1 - 7 of 7 reviews