How HTTPS Works (...and SSL/TLS too)

แชร์
ฝัง
  • เผยแพร่เมื่อ 23 ธ.ค. 2024

ความคิดเห็น •

  • @CraigForant
    @CraigForant 3 ปีที่แล้ว +92

    Jeremy....I don't think many people realize the significance of the short and subtle pauses when you switch from the drawing to looking into the camera to talk to us. This style of teaching is incredibly engaging and allows the viewer's mind to refocus and absorb what they are hearing. Love the usage of different techniques and methods. Please keep doing what you are doing. You have a superhuman ability to engage your audience and break down the most difficult of subjects in the most sensible way. You inspire me on every product demo and training session I present to my clients. I would love for you to create a series on how to be a better presenter!

    • @kalkalasch
      @kalkalasch 2 ปีที่แล้ว +1

      troof

    • @Viatto
      @Viatto  2 ปีที่แล้ว +2

      Hugely appreciate your kind words Craig. I frequently try different styles and never know what “works.” :-)

    • @nurjehankarim9787
      @nurjehankarim9787 2 ปีที่แล้ว

      You are amazing

  • @banerjeearkajit
    @banerjeearkajit 3 ปีที่แล้ว +17

    I have never seen anyone explain this concept so flawlessly. Appreciate you so much, Jeremy.

  • @JorgeAlmazan
    @JorgeAlmazan 3 ปีที่แล้ว +38

    Best explanation of SSL/TLS I’ve every seen. Great job Jeremy!

    • @transformer889
      @transformer889 3 ปีที่แล้ว

      Good, now you can explain it to the rest of us.

  • @danieltnaves
    @danieltnaves 2 ปีที่แล้ว +1

    Excellent video... The clarification, in the end, about how the signature is verified and how the browser does that was perfect! Thanks!

  • @antonioskokiantonis7051
    @antonioskokiantonis7051 2 ปีที่แล้ว

    I've seen a very passionate guy trying to teach fundamentals. Really appreciated and subscribed of course!

  • @almasabdrazak5089
    @almasabdrazak5089 3 ปีที่แล้ว +4

    "client encrypt session key using server's public key" that's the sentence I was looking for , it was so confusing reading other blogs saying that encryption starts as asymmetric and then switches to symmetric, this single sentence makes it clear how it works, thanks a lot

    • @matrix9046
      @matrix9046 2 ปีที่แล้ว

      Exactly Same here 🤌

  • @MauroEnding
    @MauroEnding 3 ปีที่แล้ว +3

    how many knowledgeable people we may have in the world if we all have someone like him teaching this way! wow! 19.38 mins being more productive than toons of classes I have been to! hands down to you!

  • @chittranjankumar5769
    @chittranjankumar5769 8 หลายเดือนก่อน

    Your effort will not go waste the way you are tried to feed and inculcate the content in viewers mind. Hats off to you.

    • @CiblekCorot
      @CiblekCorot 6 หลายเดือนก่อน

      6:18 Dian

    • @CiblekCorot
      @CiblekCorot 6 หลายเดือนก่อน

      6:18

  • @lingaiahdanda6214
    @lingaiahdanda6214 11 หลายเดือนก่อน

    you are an addiction jeremy. your method of teaching is unique. Thank you!

  • @ajaygulani3086
    @ajaygulani3086 3 ปีที่แล้ว +3

    Watching you teach anything is like binge watching some very addictive TV show! When this video finished I felt the almost 20min just go by so quickly, and leaving me wanting to watch the next video right away. This was so engaging!
    I always thought I knew SSL/TLS, but as you mentioned there were certain things where pieces of puzzle were just missing and after watching this video I have those pieces!
    And I have watched you videos on CBT Nuggets for my CCNA training and you managed to break down something, that for me was so complex for me to understand by other means (reading books, other training courses) where I thought there is no way I will understand this networking stuff, to explaining it in such a way that anyone can relate to and then really understand it!
    So thank you for all the teaching that you do!

  • @1200Moises
    @1200Moises 2 ปีที่แล้ว

    Software engineer here. This is the best explanation I have of ssl/tls works. Thank you!

  • @fhfolbf
    @fhfolbf 2 ปีที่แล้ว

    Sir, your passion towards the topic simply gets us hooked in no time and make us want to stay on till the end. Kudos to you for all the efforts!

  • @MinhLêNguyễnQuang-k4z
    @MinhLêNguyễnQuang-k4z ปีที่แล้ว

    I am absolutely clear how ssl works. Tks for your spending time!

  • @damokerbs5856
    @damokerbs5856 2 ปีที่แล้ว

    That's some damn good teaching here I wished I brought popcorn with me. Thank you for the great content !

  • @RockHopper245
    @RockHopper245 3 ปีที่แล้ว

    I've yet to find a better teacher than Jeremy who can take any subject and present in a way that anyone can understand. Top work, and thanks👍 🙌

  • @asemmoqbel982
    @asemmoqbel982 2 ปีที่แล้ว

    One year later and I just watch this now.. I can't say how much helpful this video and the information is delivered so smooth especially the cryptography part.. Thank you jermey and the video is saved for future needs.

  • @xlugerxD
    @xlugerxD 3 ปีที่แล้ว

    I don't usually comment, but maaaaaan, you are awesome... from your teaching methods to your charisma, keep the good work! Cheers!

  • @base4our
    @base4our 2 ปีที่แล้ว

    At last, a clear explanation of SSL/TLS! Thanks for this!

  • @mathewkargarzadeh3158
    @mathewkargarzadeh3158 3 ปีที่แล้ว +1

    Thank you fro putting such a concerted efforts explaining this convoluted subject ( SSL/TLS ) in plain English. appreciated for sharing your working knowledge. Mat.

  • @franchise2570
    @franchise2570 ปีที่แล้ว

    This is awesome, you did an excellent job in explaining the concept! Bravo to you sir. 🙂

  • @syedamin6690
    @syedamin6690 3 ปีที่แล้ว

    This is the best video on the internet on this topic.

  • @ranti013
    @ranti013 ปีที่แล้ว

    one of the best videos on the internet. Thank You.

  • @1snico1
    @1snico1 3 ปีที่แล้ว

    Mate, I really don't comment on youtube very often but I need to say this - absolutely brilliant video. Your method of explaining and teaching is better than virtually anything I've ever seen, both online or in actual courses (and I've been to dozens). Certificates are something that have remained as a bit of a black hole for me in my career and finding a video like this that so succinctly re-enforces everything in my head is just amazing. Definitely subscribing.

  • @victorramiso4309
    @victorramiso4309 3 ปีที่แล้ว

    Its awesome how fast you speak when you get all excited when explaining and then i get all hyped as well love all your vids

  • @forwardfocus8649
    @forwardfocus8649 2 ปีที่แล้ว

    This is a brilliant, informative, talented piece of teaching. I'm putting it on my twitter account. I agree with Craig that the engagement is amazing. This is how you want to teach using electronic mediums.

  • @pootchie28
    @pootchie28 ปีที่แล้ว

    Iam where Iam now because of you. 2015 I decided career switch, 30 days of career break just watching online - Jeremy's videos on CCNA, after 2 months landed a job. Thanks so much!!

  • @MichaelWalmsleyJr
    @MichaelWalmsleyJr 2 ปีที่แล้ว

    Fantastic explanation for someone like me who has been doing front end development for years, but never fully understand everything that was going on with https. Definitely filled in a few holes in my understanding of the process! Thanks!!!

  • @jiangfrank6283
    @jiangfrank6283 3 ปีที่แล้ว

    this is best , not one of the best explanation on SSL/TLS which I have been seen , Great !!!

  • @manuelaraica3964
    @manuelaraica3964 3 ปีที่แล้ว +1

    Thanks Jeremy! Always love that passion that you bring sharing the knowledge.

  • @027vishal
    @027vishal 2 ปีที่แล้ว +1

    Thank you Jeremy, One of the best explanation I have ever seen on HTTPS

  • @oebelus
    @oebelus 2 ปีที่แล้ว

    The best explanation ever! Thank you so much for this video.

  • @EvelioOpenMat
    @EvelioOpenMat 3 ปีที่แล้ว

    Brother I love you........I am studying for security plus and I understand alot but you just made everything click together.

  • @garryn123
    @garryn123 3 ปีที่แล้ว

    Hilariously serious...very engaging. You're a bit of a 'nut case' with this and I mean that in the nicest way - keep up the good work! 👍😆

  • @mk325ef
    @mk325ef 2 ปีที่แล้ว

    "Wait a second!"..."I'm going to put this to bed right now...".. Awesome video. Thanks for trying to simplify it.

  • @EBay_Dev
    @EBay_Dev 11 หลายเดือนก่อน

    after 2 3 years, finally I got it and I got it right :)) thank you so much

  • @aliyousef9580
    @aliyousef9580 11 หลายเดือนก่อน

    Huge effort , thanks jeremy ,keep watching this video and cant get enogh ..
    Many thanks from syria.

  • @aimtiaz_
    @aimtiaz_ 3 ปีที่แล้ว

    Fantastic video. One of the best that describes SSL & HTTPS out there. Would be great if you can do a video on the intricacies of certificates - root, intermediate, leaf etc.

  • @pierrekosmas2405
    @pierrekosmas2405 3 ปีที่แล้ว

    Great demo, many THANKS Jeremy for this video.

    • @Viatto
      @Viatto  3 ปีที่แล้ว

      My pleasure!

  • @boysweetpotato6575
    @boysweetpotato6575 3 ปีที่แล้ว

    man you're a legend! you're the one who made networking understandable for me during my college days and now you still rockin and im still learning from you. such good stuff!
    Edit: Helped me aced my job application last week! im really happy i bumped into this content! Thanks Jeremy, All the best!

  • @Arayankodesouth
    @Arayankodesouth 3 ปีที่แล้ว

    just subscribed and liked as soon as watched this.! awesome content in the TH-cam today

  • @travelwalk539
    @travelwalk539 3 ปีที่แล้ว

    I found this video very helpful and it helped me to understand the whole HTTPS protocol. Great work done!

  • @timurius1988
    @timurius1988 3 ปีที่แล้ว

    Thanks Jeremy! You have explained it very simple as usual :)

  • @tonynunez6539
    @tonynunez6539 2 ปีที่แล้ว

    Great explanation of a process that even most experienced IT professionals in the DOD don't even understand. I am constantly struggling to explain the process to them.

  • @miaturner5403
    @miaturner5403 3 ปีที่แล้ว +2

    I finally understand this concept. Thank you!!

  • @udays2
    @udays2 ปีที่แล้ว

    You killed it Sir!

  • @vighneshpp
    @vighneshpp 2 ปีที่แล้ว

    Incredible explanation! Subscribed!!!

  • @egemendemirbek
    @egemendemirbek 3 ปีที่แล้ว

    Really appreciate your efforts... I'm looking forward to take and complete the entire series ... please don't be late :)

  • @fokkedeboer2342
    @fokkedeboer2342 3 ปีที่แล้ว

    This deserves more views

  • @agustinzago9180
    @agustinzago9180 3 ปีที่แล้ว +1

    If the CA encrypt their signature with their private key and u need their public key to decript it. Wouldnt that permit a hacker to decript the CA signature in between the web browser and the server? Since the public key is on public demand?

  • @sparkforcontracting8877
    @sparkforcontracting8877 3 ปีที่แล้ว

    One of the best videos every explaining this topic. really thanks that helped a lot.

  • @josephbais7463
    @josephbais7463 2 ปีที่แล้ว

    The best ever https explanation.

  • @bhaskartaneja6293
    @bhaskartaneja6293 2 ปีที่แล้ว

    I liked it sir , the way you explained and your want to have that be learnt. I suppose I watched your video first time.
    Thanks

  • @GauravSingh-fu3dn
    @GauravSingh-fu3dn 3 ปีที่แล้ว +1

    Loved the pen 🖊 and paper 📄. Nice explanation 😊

  • @LaurentYaish
    @LaurentYaish 3 ปีที่แล้ว +1

    Did a great job at explaining a complex concept. Would give 2 thumbs up if I could!

    • @kalkalasch
      @kalkalasch 2 ปีที่แล้ว

      you can't, you can do only 1

  • @Ballzowt
    @Ballzowt 2 ปีที่แล้ว

    Nailed IT! Thank you very much!

  • @admyc8172
    @admyc8172 3 ปีที่แล้ว +1

    Thanks for the video. I thought that with Diffie Hellman there was no need to keep the communication to set up the symmetrical key encrypted. If so, in your example, why is the web server's public key used by the client to send information to set up the symetrical key?

    • @Viatto
      @Viatto  3 ปีที่แล้ว

      Yep!

  • @jimg1928
    @jimg1928 2 ปีที่แล้ว

    QUESTION: The initial request/response HTTPS communication between client and server are not encrypted, except for the CA certificate in the response?
    If so, what prevents a hacker from seeing the initial client request to the server, and intercept the response from the server,
    containing its CA certificate, decrypting the certificate with the CA's public key, get the public key in the certificate,
    and use it to encrypt its own symmetric key and send to the server, thereby bypassing the client, and establishing a bogus dialog between racker and server?

  • @elnurvalikhanli6783
    @elnurvalikhanli6783 2 ปีที่แล้ว

    Thanks for clear explanation! Good job!

    • @Viatto
      @Viatto  2 ปีที่แล้ว

      Glad it was helpful!

  • @shyamsunder4008
    @shyamsunder4008 3 ปีที่แล้ว

    Awesome. This one is worth a million views

  • @NFerrari97
    @NFerrari97 3 ปีที่แล้ว

    My head hurts after this video but amazing explanation as always !

  • @mrscbw1
    @mrscbw1 3 ปีที่แล้ว

    Awesome explanation.. subscribed!

  • @leonardo.eliziario
    @leonardo.eliziario 3 ปีที่แล้ว

    Amazing explanation!!!

  • @samdagar4447
    @samdagar4447 ปีที่แล้ว

    Brilliant mate!

  • @sa77if
    @sa77if 3 ปีที่แล้ว

    Thanks Jeremy
    what if (let's encrypt) used as CA?
    I don't think its already installed inside any browser
    thanks

  • @tamojitchakraborty3871
    @tamojitchakraborty3871 3 ปีที่แล้ว

    Simply Awesome

  • @danielmarques433
    @danielmarques433 3 ปีที่แล้ว

    Thanks, your explanation is awesome. I finally understand how the HTTPS stuff works.

    • @Viatto
      @Viatto  3 ปีที่แล้ว

      Glad it helped!

  • @dominadorrey7669
    @dominadorrey7669 3 ปีที่แล้ว +1

    Really helped me Jeremy! Thank you!

  • @RahulSingh-ki3og
    @RahulSingh-ki3og 6 หลายเดือนก่อน

    As the protocol itself is stateless does the session key generates for every request or how does it identify the session key and client?

  • @peaceandfood7952
    @peaceandfood7952 2 ปีที่แล้ว

    And in the case it's not a web browser but an application what is the best secure way to install the certificate in the client?

  • @swethasasikumar1234
    @swethasasikumar1234 3 ปีที่แล้ว

    Thank you! That was very helpful!

  • @Mohammadjulfikar7187
    @Mohammadjulfikar7187 3 ปีที่แล้ว

    Outstanding!! I Loved it.

  • @JinathPremaratne
    @JinathPremaratne 2 ปีที่แล้ว

    super, I watched 3 times and got it. the is the best

  • @harrysearia1784
    @harrysearia1784 3 ปีที่แล้ว

    Definitely gonna rewatch this! X4

  • @christopherjholland
    @christopherjholland 3 ปีที่แล้ว

    17:45 If private keys can decrypt messages sent with public key and public key can decrypt messages sent with private key, then anybody can get the public key, since it is public and decrypt the private message. I must be missing something.

  • @peaceandfood7952
    @peaceandfood7952 2 ปีที่แล้ว

    Is the public key in the certificate the same as the one in the browser? If yes it doesn't make sense...

  • @basvarajsb3857
    @basvarajsb3857 9 หลายเดือนก่อน

    Thank you, Mr Lahey. 🍻

  • @mikemm1456
    @mikemm1456 3 ปีที่แล้ว +2

    is it out of sync voice/lips i changed to 1080 improved a bit

  • @tund3_
    @tund3_ 2 ปีที่แล้ว

    Thanks a lot Jeremy, very well explained.

    • @Viatto
      @Viatto  2 ปีที่แล้ว

      Glad it was helpful!

  • @jeremiahkumah1091
    @jeremiahkumah1091 3 ปีที่แล้ว

    Love the way you teach!

  • @chadsexinton
    @chadsexinton 3 ปีที่แล้ว

    Amazing explaination

  • @ashwanthbalajir5153
    @ashwanthbalajir5153 2 ปีที่แล้ว

    That's really heavy. But you know this is the video where I have understood the process in a clear manner.

  • @sid0000009
    @sid0000009 3 ปีที่แล้ว

    can you also please make a video on mutual TLS on similar line. Great simplification of a complicated topic.

  • @hesham02
    @hesham02 3 ปีที่แล้ว

    This was an excellent explanation. Thank you!

  • @gourabdey91
    @gourabdey91 3 ปีที่แล้ว

    Excellent explanation

  • @kuqezi294
    @kuqezi294 3 ปีที่แล้ว

    Thank you for this video and nice explaination ! You helped me so much !

  • @pj3739
    @pj3739 3 ปีที่แล้ว

    You the man Jeremy! This really explains this topic.
    Bit of a lingering question as to when the CA encrypts the signature with it's private key, is it not giving away something, I know it doesn't give the key but like I'd to hear a bit more on this sometime.

    • @Viatto
      @Viatto  3 ปีที่แล้ว +2

      Keep in mind that the PUBLIC keys of the "global CAs" (aka well-known CAs) are embedded in every OS/Web browser. So...that tells you that ANYONE can "decrypt" data that was originally encrypted with the CA's PRIVATE key (not that they "get" the private key, but that they can decrypt data that was encrypted with the private key). So...when a CA "signs" a certificate, what it means is they encrypt their name with their private key and put that data on the certificate... EVERYONE in the world can decrypt that signature, which validates that it came from the REAL CA.

    • @pj3739
      @pj3739 3 ปีที่แล้ว

      @@Viatto Got it, thanks Jeremy, the private key used in a different way in asymmetric encryption, yin and yang, private key still secure.

  • @chrisadams27
    @chrisadams27 2 ปีที่แล้ว

    Where did the Session key come from?

  • @aruranganeshan2951
    @aruranganeshan2951 3 ปีที่แล้ว

    Thank you for this video, and which stage "Diffie hellman" key exchange happening?
    client(pub key { "Diffie hellman" factor of Client } )------------------> Server
    client

  • @jaydeebulje4493
    @jaydeebulje4493 2 ปีที่แล้ว

    But what do the first 2 letters after https//:zw mean ? What does the zw mean ?

  • @RashadKhan007
    @RashadKhan007 3 ปีที่แล้ว

    Was watching the same topic on ccna labs for real world and then this popped up!! Thank

  • @johnvardy9559
    @johnvardy9559 ปีที่แล้ว

    Great Video. So educated

  • @stephengoh5456
    @stephengoh5456 3 ปีที่แล้ว

    Super helpful! Love it. Thank you.

  • @leenorris2500
    @leenorris2500 3 ปีที่แล้ว

    Thanks Jeremy!
    Do you got any patreon page which I can subscribed?

  • @olivierdeswart9961
    @olivierdeswart9961 7 หลายเดือนก่อน

    Great vid, thanks!!

  • @kailasphanashikar8587
    @kailasphanashikar8587 2 ปีที่แล้ว

    Greate job...thanks for the video...

  • @parheliaa
    @parheliaa 3 ปีที่แล้ว

    Why pen & paper instead of a typical whiteboard in Painter?

  • @davidalfaromorales3792
    @davidalfaromorales3792 3 ปีที่แล้ว

    Great video, Thanks. Subscribed!!

  • @kumarsaurabh6256
    @kumarsaurabh6256 2 ปีที่แล้ว

    Can someone copy the signature of trusted CA from a certificate that it has issued and then use that (copied signature) to create a new certificate for some other server?

  • @AshiGupt_MS
    @AshiGupt_MS 2 ปีที่แล้ว

    Kindly help.
    Client Server - Client sent session encrypted to server. But how do server understand request sent from Client. I mean how does server decrypt session key or data from client as it does not have client private key? Am I missing something? Mathematical example will be more helpful. Or more preciously - how do asymmetric workflow
    Data (encrypted with key1) -> Data (decrypted with key2) -- how is it possible?

  • @diaahanna8882
    @diaahanna8882 2 ปีที่แล้ว

    thank you for the clear explanation.