ºÝºÝߣ

ºÝºÝߣShare a Scribd company logo

Safe netizens

?Download as PPS, PDF?
?
Rohit Srivastwa
Rohit Srivastwa

HTTPS uses SSL to encrypt communication between a user's computer and a server to protect against man-in-the-middle attacks. However, websites may only use password authentication over HTTPS, leaving emails and other traffic unencrypted. To improve security, users should force encryption by changing URLs to HTTPS, use dedicated email and messaging clients instead of web browsers, and opt for client applications when possible to encrypt more of their online activities. Nothing provides 100% security but these steps can make a user 80-90% safe.

1 of 16
Safe Netizen HACK proof your browsing with smart use of HTTPS
SSL / HTTPS Supposedly Secure Layer HTTPS uses SSL to create a unique set of keys called Public & Private key used to encrypt the communication This can¡¯t be forged BUT impersonated There is no perfect impersonation & slightest of change will through a warning. User MUST NOT ignore these warnings
Firefox & Thunderbird
Internet Explorer 6
Internet Explorer 7
Microsoft Outlook
What to check?
?
How to check ?
?
What to do?
?
Am I getting HACKED? Someone might be trying to do a MITM attack Attacker will capture the traffic between your computer & server Can¡¯t decrypt HTTPS traffic if it uses valid certificate Will impersonate the certificate Encrypt your data with HIS certificate, decrypt the same at his end, encrypt again with original server certificate & send to server YOU ARE HACKED!
OK, I get valid certificates But you are still not secure Most of the websites uses only password authentication over HTTPS Your mails/traffic still goes in plain text. WHY ??? Its an expensive mechanism (time & effort) A trade-off between speed & security
So what to do? Try using mail clients (thunderbird / outlook / whatever) rather than web browser Atleast all the traffic is encrypted, it adds a little latency though, but on the other hand gives me ease to manage my mails Change the URL & force it to go over HTTPS That¡¯s for emails, what for other apps? Use client applications as much as possible
Nothing is 100% secure But a smart netizen can atleast be 80-90% safe ? ? Q & 42

More Related Content

Safe netizens

  • 1. Safe Netizen HACK proof your browsing with smart use of HTTPS
  • 2. SSL / HTTPS Supposedly Secure Layer HTTPS uses SSL to create a unique set of keys called Public & Private key used to encrypt the communication This can¡¯t be forged BUT impersonated There is no perfect impersonation & slightest of change will through a warning. User MUST NOT ignore these warnings
  • 8. ?
  • 10. ?
  • 12. ?
  • 13. Am I getting HACKED? Someone might be trying to do a MITM attack Attacker will capture the traffic between your computer & server Can¡¯t decrypt HTTPS traffic if it uses valid certificate Will impersonate the certificate Encrypt your data with HIS certificate, decrypt the same at his end, encrypt again with original server certificate & send to server YOU ARE HACKED!
  • 14. OK, I get valid certificates But you are still not secure Most of the websites uses only password authentication over HTTPS Your mails/traffic still goes in plain text. WHY ??? Its an expensive mechanism (time & effort) A trade-off between speed & security
  • 15. So what to do? Try using mail clients (thunderbird / outlook / whatever) rather than web browser Atleast all the traffic is encrypted, it adds a little latency though, but on the other hand gives me ease to manage my mails Change the URL & force it to go over HTTPS That¡¯s for emails, what for other apps? Use client applications as much as possible
  • 16. Nothing is 100% secure But a smart netizen can atleast be 80-90% safe ? ? Q & 42