Save Big On Open-Box & Used Products: Buy "Bulletproof SSL and TLS: Understanding and Deployi...” from Amazon Open-Box & Used and save 14% off the $60.00 list price. Product is eligible for Amazon's 30-day returns policy and Prime or FREE Shipping. See all offers from Amazon Open-Box & Used.
Enter your mobile number or email address below and we'll send you a link to download the free Kindle App. Then you can start reading Kindle books on your smartphone, tablet, or computer - no Kindle device required.
To get the free app, enter your mobile phone number.
Other Sellers on Amazon
+ $3.99 shipping
+ $3.99 shipping
+ Free Shipping
Bulletproof SSL and TLS: Understanding and Deploying SSL/TLS and PKI to Secure Servers and Web Applications Paperback – August 1, 2014
Prepare for your professional certification with study guides and exam prep tools from Wiley. See more
Frequently bought together
Customers who bought this item also bought
Special offers and product promotions
"The most comprehensive book about deploying TLS in the real world!"
Nasko Oskov, Chrome Security developer and former SChannel developer"Meticulously researched."
Eric Lawrence, Fiddler author and former Internet Explorer Program Manager"The most to the point and up to date book about SSL/TLS I've read."
Jakob Schlyter, IT security advisor and DANE co-author
About the Author
Ivan Ristic is a security researcher, engineer, and author, known especially for his contributions to the web application firewall field and development of ModSecurity, an open source web application firewall, and for his SSL/TLS and PKI research, tools and guides published on the SSL Labs web site. He is the author of two books, Apache Security and ModSecurity Handbook, which he publishes via Feisty Duck, his own platform for continuous writing and publishing. Ivan is an active participant in the security community and you'll often find him speaking at security conferences such as Black Hat, RSA, OWASP AppSec, and others. He's currently Director of Application Security Research at Qualys.
Browse award-winning titles. See more
If you are a seller for this product, would you like to suggest updates through seller support?
Top Customer Reviews
As a software engineer, I read a lot of technical books. It's rare to see a book like this which combines so many different elements into a cohesive book. It could be split up into 2 books: one on the history/context of the development and vulnerabilities of SSL/TLS and another on using OpenSSL, configuring certs and servers. I'm glad it's all one book so I only need to recommend one! There aren't many books like this on the market on any topic. It's rare to see someone cover the basics of the theory, summary of attacks and mitigations, and trade-offs with deploying in the real world.
The book's binding and paper is great as well. If you properly break in the book, it will lie flat all the way from page 30 onward. I didn't have any problems reading it on a bed. I read this cover to cover in part of a weekend. It was a quick, fun and informative read. After reading this, you should be ready to dive into the RFCs.
My criticism is light. I don't think the wikipedia references have much value. Everyone knows you can search for things. I think using the URL shortener links are annoying. What happens when your server goes down? And I wish there was a quick reference appendix at the end which summarizes recommended future reading. There were some book recommendations throughout the book and a summary of important RFCs. It would be nice to have that all in one place.
This book has something to offer for everyone. It goes into the matters of how SSL and TLS work, and how to properly configure it on modern web servers. The companion ebook is also very useful. The ebook was updated in a matter of days as new relevant information became available.
complete and comprehensive, covers the SSL and TLS in the most important systems, practical examples for different configurations.