-
Notifications
You must be signed in to change notification settings - Fork 699
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Merge remote-tracking branch 'awslabs/master'
- Loading branch information
Showing
4 changed files
with
51 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,51 @@ | ||
# Useful Reading list for s2n | ||
|
||
|
||
## Books | ||
|
||
* [Bulletproof SSL and TLS](http://www.amazon.com/Bulletproof-SSL-TLS-Understanding-Applications/dp/1907117040/) - great book by Ivan Ristic. If you buy one book about SSL/TLS, buy this one. | ||
* [Implementing SSL / TLS using Cryptography and PKI](http://www.amazon.com/Implementing-SSL-TLS-Using-Cryptography/dp/0470920416/) - by Joshua Davies. | ||
* [Introduction to Modern Cryptography, 2nd ed](http://www.amazon.com/Introduction-Cryptography-Chapman-Network-Security/dp/1466570261/) - Katz and Lindell | ||
|
||
## RFCs and specifications relating to TLS/SSL | ||
|
||
* [SSLv2](http://www-archive.mozilla.org/projects/security/pki/nss/ssl/draft02.html) | ||
* [SSLv3](https://tools.ietf.org/html/rfc6101) | ||
* [TLS 1.0](https://tools.ietf.org/html/rfc2246) | ||
* [TLS 1.1](https://tools.ietf.org/html/rfc4346) | ||
* [TLS 1.2](https://tools.ietf.org/html/rfc5246) | ||
* [AES GCM for TLS](https://tools.ietf.org/html/rfc5288) | ||
* [ECC cipher suites for TLS](https://tools.ietf.org/html/rfc4492) | ||
* [TLS extensions](https://tools.ietf.org/html/rfc6066) | ||
* [Application-Layer Protocol Negotiation Extension](https://tools.ietf.org/html/rfc7301) | ||
* [TLS 1.3 draft specification](https://github.com/tlswg/tls13-spec) | ||
|
||
## ASN.1 and X509 | ||
|
||
* [X.509 PKI](https://tools.ietf.org/html/rfc4210) | ||
* [X.509 PKI and CRLs](https://tools.ietf.org/html/rfc5280) | ||
* [Layman's Guide to ASN.1](http://luca.ntop.org/Teaching/Appunti/asn1.html) | ||
|
||
## Interesting implementations | ||
|
||
* [MiTLS](http://www.mitls.org/wsgi/home) , and [TLS Attacks](http://www.mitls.org/wsgi/tls-attacks) in particular. | ||
* [GoTLS](http://golang.org/pkg/crypto/tls/) - TLS as implemented in the Go programming language | ||
* [OpenSSL](https://www.openssl.org/) - ubiquitious and reference implementation | ||
* [LibreSSL](http://www.libressl.org/) - fork of OpenSSL maintained by a team from OpenBSD | ||
* [BoringSSL](https://boringssl.googlesource.com/boringssl/) - fork of OpenSSL maintained by Google Security team | ||
* [NSS](https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS) - maintained by Mozilla, used by several browsers | ||
|
||
## Mailing lists and forums | ||
|
||
* [IETF TLS Working Group](https://datatracker.ietf.org/wg/tls/charter/) | ||
* [IETF CRFG](http://www.ietf.org/mail-archive/web/cfrg/current/maillist.html) | ||
|
||
## Videos and tutorials | ||
|
||
* [SSL with Amazon Web Services](https://www.youtube.com/watch?v=8AODa_AazY4) - nuts and bolts overview of SSL/TLS | ||
|
||
## Miscellaneous | ||
|
||
* [DJBs crypto page](http://cr.yp.to/crypto.html) | ||
* [NaCL](http://nacl.cr.yp.to/) and [libsodium](https://github.com/jedisct1/libsodium) | ||
* [spiped](http://www.tarsnap.com/spiped.html) |
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.