11. Advanced Encryption Standard (AES)

AES is a widely adopted standard for symmetric key encryption established by the U.S. National Institute of Standards and Technology (NIST). It processes 128 bits of input and produces 128 bits of encrypted output. For a deeper understanding of AES, you can check out the linked resources below.

12. Role of Certificate Authorities

A Certificate Authority (CA) is a trusted third-party organization that issues digital certificates. These certificates verify that a public key is indeed linked to its designated subject. When a user connects to a server, their device first checks the CA's signature on the server's certificate. If verified, a secure HTTPS connection is initiated. Leading global CAs include IdenTrust, DigiCert, and Sectigo.

13. Understanding SSL/TLS Certificates

An SSL/TLS certificate serves to authenticate a website's server identity and facilitate an encrypted connection between the client and server. Issued by a Certificate Authority, this certificate is stored on the server and includes:

• Domain name of the website
• Details of the certificate holder (individual or organization)
• Information about the issuing Certificate Authority, including its digital signature
• Issue and expiration dates
• The website's public key, which is utilized by the client to establish the secure connection

It's important to note that the server keeps the corresponding private key secure and does not include it in the SSL certificate.

14. What is Transport Layer Security (TLS)?

TLS is a protocol designed to secure communication between two entities, such as a client and a server, over a network. It has evolved from the now-obsolete SSL (Secure Sockets Layer) framework and operates at the Application layer (Layer 7) of the OSI model.

15. The Importance of HTTPS

HTTPS, or Hypertext Transfer Protocol Secure, is an extension of HTTP that ensures secure communication over a network. It operates by employing TLS for encryption.

Note the following:

• Port 80 is typically used for standard (unencrypted) HTTP traffic.
• Port 443 is commonly used for encrypted HTTPS traffic.

16. Understanding the TLS Handshake

The TLS handshake is a critical process for establishing a secure connection over HTTPS. Here’s a simplified overview of the steps involved:

1. The client initiates communication with a ClientHello message.
2. The server responds with a ServerHello message.
3. The server sends a Certificate message along with a ServerKeyExchange message, which includes its SSL certificate and public key.
4. Following this, a ServerHelloDone message is sent by the server.
5. The client then verifies the SSL certificate using the public key and CA's signature.
6. A ClientKeyExchange message is sent back by the client, containing a PreMasterSecret encrypted with the server's public key.
7. Both parties use the PreMasterSecret to create session keys for encryption of further communication.
8. The client sends a ChangeCipherSpec and Finished message to the server, which then attempts to decrypt it with its private key.
9. Finally, the server sends a ChangeCipherSpec and Finished message back to confirm the secure connection.

17. What Constitutes a Cyber Attack?

A cyber attack refers to malicious attempts aimed at compromising the security of one or more computer systems.

18. Understanding Man-In-The-Middle Attacks

A Man-In-The-Middle (MITM) attack involves a malicious actor secretly intercepting and potentially altering communications between two parties who believe their conversation is confidential. Protocols like HTTPS are crucial in defending against such attacks.

19. The Role of Penetration Testing

Penetration testing is an approach to evaluate the security of an IT system by simulating an attack using the same methods that an adversary might employ. This technique helps identify the risks associated with software and hardware vulnerabilities.

20. Types of Hackers: Black, White, and Gray Hats

• Black Hat Hackers: These individuals exploit systems for personal or financial gain.
• White Hat Hackers: Ethical hackers who gain permission to breach systems to identify vulnerabilities and enhance security.
• Gray Hat Hackers: These hackers may break into systems without permission but typically do not exploit the discovered vulnerabilities; instead, they may offer to fix them for a fee.

Thank you for engaging with this article! Stay tuned for the next section!

If you're new to Python or programming, consider checking out my book titled 'The No Bulls**t Guide To Learning Python' below:

This video discusses essential knowledge to acquire before diving into cybersecurity in 2023.