# Transport Layer Security (TLS)

The protection of online communication is a critical concern in today's digital world. One of the most widely-used solutions to this challenge is Transport Layer Security (TLS). This protocol is specifically designed to ensure the confidentiality and integrity of communications over the Internet. The primary application of TLS is the encryption of communications between web applications and servers, such as when a web browser accesses a website. However, it can also be used to secure other forms of digital communication, such as email, messaging, and voice over IP (VoIP).



First we'll look at an actual certificate. Starting with USD's.

Open a cell (if needed) and run the openssl command: 

<code>openssl s_client -connect www.sandiego.edu:443 < /dev/null 2> /dev/null</code>
    
This connects to the webserver for USD and displays their certificate.<br>
    <code>< /dev/null</code> is one way to avoid commands from having to wait for input.<br>
    

Examine the USD certificate to answer the following:

1. When does the certificate expire?
1. By name, what cipher does it use? Explain what that is.
1. How long is the key?
1. Is the certificate for a CA? Why?



Is the certificate self-signed? 
* If it is, how can you tell? 
* If it is not, who signed it? 
 

1. What version of TLS was used to for this connection? 
1. What is the current version of TLS? 
1. Why do you think it does not use the current version? 


Try reconnecting, but specify TLSv1.3.<br>

`openssl s_client -connect www.sandiego.edu:443 -tls1_3`

What happens?</div>

Now look at the certificate from Google. Use www.google.com for the servername.

Compare the output. In what significant ways does it differ from that of USD's certificate?


## Examining Certificates

Next we'll look at some certificates already saved. As these are text, you can use the "cat <cert file name>" command to view them in their encoded form.
    
You can have openssl decode them for you.
    
Use commands of the form:
    <code>openssl x509 -text -noout -in "\<cert file name\>"    </code>
    
Open up individual cells and try it on the certificate files "pkilab1.crt", "pkilab2.crt" and "pkilab3.crt"
    

Answer for each:
* What organization is the certificate for?
* Who signed it?
* How many months is it valid for?
* How large is the key?

For: "pkilab1.crt"

For: "pkilab2.crt"

For: "pkilab3.crt"

## Subject Alternative Names

The Subject Alternative Name (SAN) section of an x509 certificate is an extension that allows additional, alternative identities to be associated with the subject of the certificate. These identities can be in the form of IP addresses, DNS names, email addresses, and so on. The SAN section can be used to specify multiple identities for a single certificate, which allows for more efficient use of certificates, as well as greater flexibility in the deployment of secure servers. It also eliminates the need for multiple IP-based certificates for a single server.

If you examine these certificates, you'll see the "Subject Alternative Names" (SAN) section. 

In any of the certificates, are any of the server names on different domains? If so, which certificate(s) and which domains?

## Installed Certificates

Your computer has many saved certificates installed. These may be for your web browser or the system itself. These are used to validate other certificates. 

The common location for them in on Linux is /usr/share/ca-certificates/mozilla/. Each is an individual file.

Take a look the list of files in your certificates directory. Get a feel for how many and the organizations present.

In [None]:
ls /usr/share/ca-certificates/mozilla/*

How many certificates are there? <br>
&nbsp;&nbsp;&nbsp;&nbsp; *hint: `wc -l` gives you the number of lines output, e.g. `ll | wc -l`*

How many are expired?

Hint: example bash shell template to extract expiration date information:

<code>for F in _path_to_certificate_files_ ; do _openssl_cmd_to_decode_certificates_ -in $F ; done | grep "Not After" | cut -d: -f2- | sort -k7 | head
</code><br>
*note: be aware of lines that do not parse properly and take those into consideration*

Look at the range of signature algorithms used.

Hint: This can be done by searching through all the decoded certificates for the lines where the signature algorithm is used.
1. Look back at the decoded certificates. What text in the decoded certificate holds the signature algorithm?
1. How did we do something similar before?
1. The bash command <code>cut -d <i>delimeter</i> -f <i>fields</i></code> lets you extract portions of output. The delimiter is the character that separates fields.
1. `sort` sorts the output
1. `uniq` returns the number of unique values. Adding the `-c` option also returns the count of each. The list must be sorted for uniq to work.<br><br>
e.g., <code>for F in <i>path_to_certificate_files</i> ; do <i>openssl_cmd_to_decode_certificates</i> -in $F ; done | grep "<i>text_to_match</i>" | cut -d: -f2 | sort | uniq -c</code>

Examine the range of signature methods used?  Do any seem insecure?

## Reverse Proxies
In some situations an IP address serves multiple web-servers.

Try using <i>openssl s_client -connect</i> to connect to the web server at 172.66.40.248 *(look back to the labs first parts where we first did this.)*

To be sure you did establish some connection, check that the response you get starts with CONNECTED.


Even though you successfully connected to the server you got an error because that IP serves multiple servers. This is known as a reverse proxy. The problem is that openssl sets the servername to be the same as what is given for the connect option.

Try again but add `-servername baeldung.com` to the command.

### This concludes the lab.

Use File > Save and Export Notebook as... > HTML