How HTTPS Works (...and SSL/TLS too)
Ғылым және технология
In reality, there is NO SUCH THING as HTTPS, just HTTP with SSL/TLS added to it! This video is a "slice" from the upcoming @comptia Security+ series I'm building with @NetworkChuck and @davidbombal. I would love to hear what you think about the new style!
00:00 - Introduction
00:20 - Fundamentals of HTTP Communication
03:30 - Where SSL came from
04:30 - The difference between SSL and TLS
06:02 - How SSL/TLS works
07:02 - What is a Trusted CA?
10:00 - The three major pieces of a PKI Security Certificate (asymmetric encryption)
11:45 - What happens when a client visits an HTTPS site
12:10 - Generating a session key (symmetric encryption)
15:00 - Why SSL/TLS is so important!
16:05 - Why the CA Signature is important
#Viatto
Пікірлер: 154
Jeremy....I don't think many people realize the significance of the short and subtle pauses when you switch from the drawing to looking into the camera to talk to us. This style of teaching is incredibly engaging and allows the viewer's mind to refocus and absorb what they are hearing. Love the usage of different techniques and methods. Please keep doing what you are doing. You have a superhuman ability to engage your audience and break down the most difficult of subjects in the most sensible way. You inspire me on every product demo and training session I present to my clients. I would love for you to create a series on how to be a better presenter!
@kalkalasch
2 жыл бұрын
troof
@KeepingITSimple
2 жыл бұрын
Hugely appreciate your kind words Craig. I frequently try different styles and never know what “works.” :-)
@nurjehankarim9787
Жыл бұрын
You are amazing
Best explanation of SSL/TLS I’ve every seen. Great job Jeremy!
@transformer889
3 жыл бұрын
Good, now you can explain it to the rest of us.
I have never seen anyone explain this concept so flawlessly. Appreciate you so much, Jeremy.
"client encrypt session key using server's public key" that's the sentence I was looking for , it was so confusing reading other blogs saying that encryption starts as asymmetric and then switches to symmetric, this single sentence makes it clear how it works, thanks a lot
@matrix9046
Жыл бұрын
Exactly Same here 🤌
Watching you teach anything is like binge watching some very addictive TV show! When this video finished I felt the almost 20min just go by so quickly, and leaving me wanting to watch the next video right away. This was so engaging! I always thought I knew SSL/TLS, but as you mentioned there were certain things where pieces of puzzle were just missing and after watching this video I have those pieces! And I have watched you videos on CBT Nuggets for my CCNA training and you managed to break down something, that for me was so complex for me to understand by other means (reading books, other training courses) where I thought there is no way I will understand this networking stuff, to explaining it in such a way that anyone can relate to and then really understand it! So thank you for all the teaching that you do!
how many knowledgeable people we may have in the world if we all have someone like him teaching this way! wow! 19.38 mins being more productive than toons of classes I have been to! hands down to you!
Excellent video... The clarification, in the end, about how the signature is verified and how the browser does that was perfect! Thanks!
Sir, your passion towards the topic simply gets us hooked in no time and make us want to stay on till the end. Kudos to you for all the efforts!
Its awesome how fast you speak when you get all excited when explaining and then i get all hyped as well love all your vids
Mate, I really don't comment on youtube very often but I need to say this - absolutely brilliant video. Your method of explaining and teaching is better than virtually anything I've ever seen, both online or in actual courses (and I've been to dozens). Certificates are something that have remained as a bit of a black hole for me in my career and finding a video like this that so succinctly re-enforces everything in my head is just amazing. Definitely subscribing.
Thanks Jeremy! Always love that passion that you bring sharing the knowledge.
Your effort will not go waste the way you are tried to feed and inculcate the content in viewers mind. Hats off to you.
@CiblekCorot
Ай бұрын
6:18 Dian
@CiblekCorot
Ай бұрын
6:18
you are an addiction jeremy. your method of teaching is unique. Thank you!
I've yet to find a better teacher than Jeremy who can take any subject and present in a way that anyone can understand. Top work, and thanks👍 🙌
One year later and I just watch this now.. I can't say how much helpful this video and the information is delivered so smooth especially the cryptography part.. Thank you jermey and the video is saved for future needs.
Iam where Iam now because of you. 2015 I decided career switch, 30 days of career break just watching online - Jeremy's videos on CCNA, after 2 months landed a job. Thanks so much!!
Really appreciate your efforts... I'm looking forward to take and complete the entire series ... please don't be late :)
Wow, this was a great video by Jermy, the style in which he teaches even a layman can start understanding technical stuff :)
I've seen a very passionate guy trying to teach fundamentals. Really appreciated and subscribed of course!
I am absolutely clear how ssl works. Tks for your spending time!
Fantastic explanation for someone like me who has been doing front end development for years, but never fully understand everything that was going on with https. Definitely filled in a few holes in my understanding of the process! Thanks!!!
I don't usually comment, but maaaaaan, you are awesome... from your teaching methods to your charisma, keep the good work! Cheers!
I found this video very helpful and it helped me to understand the whole HTTPS protocol. Great work done!
This is awesome, you did an excellent job in explaining the concept! Bravo to you sir. 🙂
one of the best videos on the internet. Thank You.
That's some damn good teaching here I wished I brought popcorn with me. Thank you for the great content !
This is a brilliant, informative, talented piece of teaching. I'm putting it on my twitter account. I agree with Craig that the engagement is amazing. This is how you want to teach using electronic mediums.
The best explanation ever! Thank you so much for this video.
Thank you fro putting such a concerted efforts explaining this convoluted subject ( SSL/TLS ) in plain English. appreciated for sharing your working knowledge. Mat.
Software engineer here. This is the best explanation I have of ssl/tls works. Thank you!
Thanks Jeremy! You have explained it very simple as usual :)
man you're a legend! you're the one who made networking understandable for me during my college days and now you still rockin and im still learning from you. such good stuff! Edit: Helped me aced my job application last week! im really happy i bumped into this content! Thanks Jeremy, All the best!
Fantastic video. One of the best that describes SSL & HTTPS out there. Would be great if you can do a video on the intricacies of certificates - root, intermediate, leaf etc.
At last, a clear explanation of SSL/TLS! Thanks for this!
Thank you Jeremy, One of the best explanation I have ever seen on HTTPS
just subscribed and liked as soon as watched this.! awesome content in the KZread today
One of the best videos every explaining this topic. really thanks that helped a lot.
I finally understand this concept. Thank you!!
"Wait a second!"..."I'm going to put this to bed right now...".. Awesome video. Thanks for trying to simplify it.
Thank you for this video and nice explaination ! You helped me so much !
after 2 3 years, finally I got it and I got it right :)) thank you so much
Hilariously serious...very engaging. You're a bit of a 'nut case' with this and I mean that in the nicest way - keep up the good work! 👍😆
This is the best video on the internet on this topic.
Really helped me Jeremy! Thank you!
this is best , not one of the best explanation on SSL/TLS which I have been seen , Great !!!
Incredible explanation! Subscribed!!!
Love the way you teach!
Outstanding!! I Loved it.
Brilliant mate!
You killed it Sir!
I liked it sir , the way you explained and your want to have that be learnt. I suppose I watched your video first time. Thanks
Great demo, many THANKS Jeremy for this video.
@KeepingITSimple
2 жыл бұрын
My pleasure!
Nailed IT! Thank you very much!
Amazing explanation!!!
Super helpful! Love it. Thank you.
Thank you! That was very helpful!
Awesome explanation.. subscribed!
Brother I love you........I am studying for security plus and I understand alot but you just made everything click together.
Thanks for clear explanation! Good job!
@KeepingITSimple
2 жыл бұрын
Glad it was helpful!
Loved the pen 🖊 and paper 📄. Nice explanation 😊
Huge effort , thanks jeremy ,keep watching this video and cant get enogh .. Many thanks from syria.
Awesome. This one is worth a million views
Simply Awesome
This was an excellent explanation. Thank you!
Definitely gonna rewatch this! X4
Great vid, thanks!!
super, I watched 3 times and got it. the is the best
Great video, Thanks. Subscribed!!
Great explanation of a process that even most experienced IT professionals in the DOD don't even understand. I am constantly struggling to explain the process to them.
Amazing explaination
Greate job...thanks for the video...
Great Video. So educated
This is gold!
This deserves more views
thank you so much, you're the best teacher
Great video, thanks
Excellent explanation
thank you for the clear explanation.
Thanks, your explanation is awesome. I finally understand how the HTTPS stuff works.
@KeepingITSimple
2 жыл бұрын
Glad it helped!
Thank you so much !!
Thank you!
brilliant!
Thanks a lot Jeremy, very well explained.
@KeepingITSimple
Жыл бұрын
Glad it was helpful!
Thank you very much for very well explained.
Bravo!
Was watching the same topic on ccna labs for real world and then this popped up!! Thank
Wonderful
My head hurts after this video but amazing explanation as always !
The best ever https explanation.
Thank you, Mr Lahey. 🍻
That's really heavy. But you know this is the video where I have understood the process in a clear manner.
Did a great job at explaining a complex concept. Would give 2 thumbs up if I could!
@kalkalasch
2 жыл бұрын
you can't, you can do only 1
Love you Jeremy
My hero. My idol
Subscribed
can you also please make a video on mutual TLS on similar line. Great simplification of a complicated topic.
You the man Jeremy! This really explains this topic. Bit of a lingering question as to when the CA encrypts the signature with it's private key, is it not giving away something, I know it doesn't give the key but like I'd to hear a bit more on this sometime.
@KeepingITSimple
3 жыл бұрын
Keep in mind that the PUBLIC keys of the "global CAs" (aka well-known CAs) are embedded in every OS/Web browser. So...that tells you that ANYONE can "decrypt" data that was originally encrypted with the CA's PRIVATE key (not that they "get" the private key, but that they can decrypt data that was encrypted with the private key). So...when a CA "signs" a certificate, what it means is they encrypt their name with their private key and put that data on the certificate... EVERYONE in the world can decrypt that signature, which validates that it came from the REAL CA.
@pj3739
3 жыл бұрын
@@KeepingITSimple Got it, thanks Jeremy, the private key used in a different way in asymmetric encryption, yin and yang, private key still secure.
Thanks for the video. I thought that with Diffie Hellman there was no need to keep the communication to set up the symmetrical key encrypted. If so, in your example, why is the web server's public key used by the client to send information to set up the symetrical key?
@KeepingITSimple
3 жыл бұрын
Yep!
great work Sir! For some reason you remind me of Saul Goodman from the Breaking Bad or Better call Saul series.
@KeepingITSimple
2 жыл бұрын
Wow...Thanks?
Thank you for posting this video. I am surprised everybody else seems to have understood things. i am still confused you introduced the phrase "private key" in the beginning, but did not mention it where it comes from and where its used in the process. you said the certificate includes the public key, but then later you said half of it is actually used /sent for encryption? what is the relationship between session key and private key ? I think all of this can be explained with a concrete example. pick a few numbers call one public key, call another private, etc....