Network Security with OpenSSL:

Cryptography for Secure Communications

John Viega, Matt Messier, Pravir Chandra

O'Reilly Media, Inc., Feb 9, 2009 - Computers - 386 pages

Most applications these days are at least somewhat network aware, but how do you protect those applications against common network security threats? Many developers are turning to OpenSSL, an open source version of SSL/TLS, which is the most widely used protocol for secure network communications.

The OpenSSL library is seeing widespread adoption for web sites that require cryptographic functions to protect a broad range of sensitive information, such as credit card numbers and other financial transactions. The library is the only free, full-featured SSL implementation for C and C++, and it can be used programmatically or from the command line to secure most TCP-based network protocols.

Network Security with OpenSSL enables developers to use this protocol much more effectively. Traditionally, getting something simple done in OpenSSL could easily take weeks. This concise book gives you the guidance you need to avoid pitfalls, while allowing you to take advantage of the library?s advanced features. And, instead of bogging you down in the technical details of how SSL works under the hood, this book provides only the information that is necessary to use OpenSSL safely and effectively. In step-by-step fashion, the book details the challenges in securing network communications, and shows you how to use OpenSSL tools to best meet those challenges.

As a system or network administrator, you will benefit from the thorough treatment of the OpenSSL command-line interface, as well as from step-by-step directions for obtaining certificates and setting up your own certification authority. As a developer, you will further benefit from the in-depth discussions and examples of how to use OpenSSL in your own programs. Although OpenSSL is written in C, information on how to use OpenSSL with Perl, Python and PHP is also included.

OpenSSL may well answer your need to protect sensitive data. If that?s the case, Network Security with OpenSSL is the only guide available on the subject.

Preview this book »

What people are saying - Write a review

We haven't found any reviews in the usual places.

Related books

Secure Programming Cookbook for C and C++: Recipes for Cryptography ...

John Viega,Matt Messier
Limited preview - 2009

Building Secure Software: How to Avoid Security Problems the Right Way

John Viega,Gary McGraw
No preview available - 2001

Understanding PKI: Concepts, Standards, and Deployment Considerations

Carlisle Adams,Steve. Lloyd
Limited preview - 2003

All related books »

Selected pages

Title Page

Table of Contents

Index

Introduction

CommandLine Interface

Public Key Infrastructure PKI

Support Infrastructure

SSLTLS Programming

Symmetric Cryptography

Hashes and MACs

Public Key Algorithms

OpenSSL in Other Languages

Advanced Programming Topics

CommandLine Reference

Index

Copyright

Other editions - View all

Network Security with OpenSSL: Cryptography for Secure Communications

John Viega,Matt Messier,Pravir Chandra
No preview available - 2008

Common terms and phrases

applications attacker authentication BIGNUM bits block cipher Book buffer caching callback function Cause certificate request certificate revocation list certificate�s chain Chapter client command command-line tool compute configuration file context create CRLs cryptographic decrypt default define Diffie-Hellman eMatter Edition encrypted data encryption entropy error occurs Example extension file containing filename Specify flags fprintf(stderr hash HMAC implementation input int_error("Error interface load message digest message digest algorithm mode non-blocking I/O number of bytes OpenSSL operation option is omitted output parameters passphrase password or passphrase perform plaintext pointer private key public key cryptography renegotiation return value S/MIME seed the PRNG serial number server SHA1 signing socket Specify the name SSL connection SSL object SSL_CTX stdin stdout stream cipher string Stunnel symmetric cipher tion Title Unix unsigned char unsigned int valid verify VeriSign Version write

References to this book

From other books

Real 802. 11 Security: Wi-Fi Protected Access and 802. 11i

Limited preview - 2004

Internet-Security aus Software-Sicht

Walter Kriha,Roland Schmitz
No preview available - 2009

All Book Search results »

From Google Scholar

Performance Analysis of TLS Web Servers

CRISTIAN COARFA, PETER DRUSCHEL, DAN S WALLACH - 2006 - ACM Transactions on Computer Systems

On the Performance, Feasibility, and Use of Forward-Secure Signatures

Eric Cronin, Sugih Jamin, Tal Malkin, Patrick McDaniel - Ann Arbor

Performance Evaluation of Public Key Based Authentication in ...

Georgios Kambourakis - 2004 - EURASIP Journal on Wireless Communications and Networking

Laboratory Experiments for Network Security Instruction

JOSE CARLOS BRUSTOLONI - 2006 - ACM Journal on Educational Resources in Computing

All Scholar search results »

References from web pages

O'Reilly - Safari Books Online - 059600270X - Network Security ...
059600270X - Network Security with openssl - openssl is a popular and effective open source version of SSL/TLS, the most widely used protocol for secure ...
safari.oreilly.com/ 059600270X/ openssl-PREF

Safari Books Online - 059600270X - Network Security with openssl
059600270X - Network Security with openssl - openssl is a popular and effective open source version of SSL/TLS, the most widely used protocol for secure ...
my.safaribooksonline.com/ 059600270X?suggested=top

Free Books > Computers & Internet > Certification Central ...
Network Security with openssl enables developers to use this protocol much more ... If that?s the case, Network Security with openssl is the only guide ...
2020ok.com/ books/ 23/ network-security-with-openssl-41023.htm

Ebook: Network Security with openssl | Free Download PDF Ebooks
Network Security with openssl openssl is a popular and effective open source version of SSL/TLS, the most widely used protocol for secure network ...
ebooks.penyet.net/ 2007/ 08/ 02/ networking/ network-security/ ebook-network-security-with-openssl/

Network Security with openssl: Cryptography for Secure Communications
Network Security with openssl cover. Main · Resources · Book Code · Errata Authors. Order. Authors. John Viega, Chief Scientist and founder of Secure ...
www.opensslbook.com/ about.html

Network Security with
TITLE. 4:19 PM. Thursday, June 6, 2002. Page iii. Network Security. with openssl. John Viega, Matt Messier, and Pravir Chandra. Beijing ...
www.foundstone.com/ us/ pdf/ books/ book18-samplechapter.pdf

Learning Network Security with SSL The openssl Way
Network Security With openssl by John Viega, Matt Messier and Pravir Chandra. 5. Slides available from http://www.cs.ucr.edu/�schhabra/scale05.pdf ...
www.cs.ucr.edu/ ~schhabra/ scale05.pdf

Network Security with openssl, First Edition (John Viega, Matt ...
Network Security with openssl enables developers to use this protocol much more effectively. Traditionally, getting something simple done in openssl could ...
system-administrators.info/ lib/ book/ oreily/ network-security-with-openssl-ebook-fly

한빛미디어 - 컴퓨터 도서 전문 출판사(Computer Books, O'Reilly ...
『Network Security with openssl』은 이 분야를 다루는 유일한 지침서로서 ... Network Security with openssl enables developers to use this protocol much more ...
www.hanb.co.kr/ look.php?isbn=0-596-00270-X

onlamp.com -- Seven Common SSL Pitfalls
There are other issues with deploying crls. See our book Network Security with openssl for more information on crls. ...
www.onlamp.com/ pub/ a/ onlamp/ 2002/ 06/ 27/ openssl.html

About the author (2009)

John is CTO of the SaaS Business Unit at McAfee, his second stint at McAfee. Previously, he was their Chief Security Architect, after which he founded and served as CEO of Stonewall Software, which focused on making anti-virus technology faster, better and cheaper. John was also the founder of Secure Software (now part of Fortify). John is author of many security books, including Building Secure Software (Addison-Wesley), Network Security with OpenSSL (O'Reilly), and the forthcoming Myths of Security (O'Reilly). He is responsible for numerous software security tools and is the original author of Mailman, the GNU mailing list manager. He has done extensive standards work in the IEEE and IETF and co-invented GCM, a cryptographic algorithm that NIST has standardized. John is also an active advisor to several security companies, including Fortify and Bit9. He holds a MS and BA from the University of Virginia.

Matt Messier, Director of Engineering at Secure Software, is a security authority who has been programming for nearly two decades. Besides coauthoring Network Security with OpenSSL, Matt coauthored the Safe C String Library, RATS, and EGADS, an Entropy Gathering and Distribution System used for securely seeding pseudo-random number generators. Prior to joining Secure Software, Matt worked for IBM and Lotus, on source and assembly level debugging techniques, and operating system concepts.

Pravir Chandra, Research Scientist at Secure Software Solutions, is an expert in language-level security. Most recently, he co-authored the DARPA-funded "catscan" tool for static security analysis of C source code. Pravir holds a B.S. in Computer Science from Case Western Reserve University, and wants you to know that Cleveland rocks!

Bibliographic information

QR code for Network Security with OpenSSL

Title	Network Security with OpenSSL: Cryptography for Secure Communications
Authors	John Viega, Matt Messier, Pravir Chandra
Publisher	O'Reilly Media, Inc., 2009
ISBN	0596551975, 9780596551971
Length	386 pages
Subjects	Computers › Security › General Computers / Security / General

Export Citation	BiBTeX EndNote RefMan

About Google Books - Privacy Policy - Terms of Service - Blog - Information for Publishers - Report an issue - Help - Sitemap - Google Home

New! Shop for Books on Google Play