hovav@cs.ucsd.edu
This course will study the design, implementation, and deployment of the TLS protocol, formerly called SSL.
Recommended preparation includes coursework in cryptography (CSE 107 or equivalent), security (CSE 127 or equivalent), operating systems (CSE 120 or equivalent), and networking (CSE 123 or equivalent).
Before each lecture, you are to read and be prepared to discuss all readings assigned. The course calendar lists the readings:
As a class, we will modernize Eric Rescorla’s ssldump utility. Our working repository will be on GitHub.
Our goal is to clean up the code and to add support for TLS versions and extensions added since 2002.
OpenSSL · BoringSSL · LibreSSL · NSS · GnuTLS · Microsoft Schannel · Apple Secure Transport · Bouncy Castle · SunJSSE · cryptlib · RSA BSAFE · Amazon s2n · Not-Quite-So-Broken