Transport Layer Security, TLS 1.2 and 1.3 (Explained by Example)

Dude i cant even try to explain how much I'm learning from you. These long videos are amazing. Thank you! Please never stop.

Absolute gem. It is not easy to explain so many tough and technical concepts in under 25 minutes. Thank you for sharing and teaching!

HTTP - 1:30
HTTPS - 5:10
TLS 1.2 - 8:35
Diffie Hellman Key Exchange Algorithm - 14:30
TLS 1.3 - 17:55

really appreciate the time and effort you put behind these videos. Thank you so much for sharing your knowledge !

Hey, yesterday only i started watching your channel, almost watched 6 to 7 videos, you are doing awesome job.

Very neat way of explaining . I will remember the diagrams for a very long time

What an explanation that was!
Simply incredible....keep up the good work. Appreciated. Thank you for this.

Flexing my membership emojis lol
Just found your channel the other day and did not hesitate to become a member. Already binge watched several videos. Thanks Hussein!

I think you can become the the best prof ever, trust me, you are making a heavy impact in the community of developers helping us developers grow with quality content

this is the best explanation of TLS for me, after watching 4 videos, i can conclude, with this video, i can understand it better. to make it worst, i have no IT background to it. it just so happen i saw tls 1.2 word and i started googling it and have no idea what those professors were talking about. UNTIL THIS VIDEO!

Nice video Hussien, but a few corrections.
Diffie Hellman was also used in TLS 1.2. The reason for less round trips in 1.3 is because negotiation for key exchange protocol is no longer needed.
I also have issues understanding your example relating to security. You mentioned that in TLS 1.2, an adversary is capable of obtaining the server's private key, which the server does not send over the internet. The adversary can then use this key to decrypt the client's encrypted key which he sends over. My question is, if an adversary can obtain the server's private key in 1.2, why can't he also obtain the server's red key in TLS 1.3, since both keys follow the same "protocol" (both keys are private to the server and not sent over communication). Actually, 1.3 removed cryptographic schemes used in 1.2 that are deemed insecure by standards of modern day technology, for example DES was used in 1.2 but abandoned in 1.3 as its key length is vulnerable to brute force attacks, given the capability of modern hardware.
Great video nonetheless!

@Hussein Nasser, You're the best teacher I ever had. I love your videos. Keep making these informative videos. It feels like you've put all your knowledge inside these packets that are transferred to me via TLS v1.3 through TH-cam.

Just finished my Web-Developer Bachelor Degree.
For the final exam 7 presentation, and the one I got was on this subjekt. Luckily I had transcribed this video, translated it into Danish, screen captured the images for my 20 minuets PowerPoint presentation. I got a *B+* (No kidding).
So I just wanted to thank you a million times for that, you are the best resource on this topic 👏

i like how you explain complex concepts with simple words and drawings..., i did enjoy this video, subscribed.

Am a great fan of all your videos, simple way of explaining concepts. Would really appreciate your patience and commitment to learn, prepare and publish these videos.

Great explanation, thank you very much for the presentation and graphics! The point starts from 5:27

I love it. Struggled with understanding of Diffie Hellman at first but I got it in the end.

Thanks Hussein. All your explanations make these complexities easy to grasp.

Good video. The vulnerability of accessing the private key and then the symmeric key is not really about TLS 1.2. V1.1 had some renegotiation issues that 1.2 no longer has. In 1.2 you can still use DH or RSA in the key exchange (configured in the ciphersuite) that the server and client negotiate over. Diffie Hellman Ephemeral (DHE) in the cipher suite is what solves this threat scenario. This is forward secrecy.
You leave out how the public key is deemed trustworthy. The certificate is something the client trusts by virtue of having a CA certificate. The server's public key has to be signed by the same CA. Thats what makes a public key a certificate. For mutual TLS, the converse is true. In TLS 1.3 there is perfect forward secrecy. Never can the symmetric key be derived from possessing the private key.
Fro developers that USE this it is a great introduction.

haha I loved the way you wrapped it together! it was fun to watch

Hey Hussein, I was trying to piece together the TLS handshake and the Certificate roles in HTTPS for the key exchange because I cannot find a video talking about both things and how they complement each other, so for some time I even thought they were somehow mutually exclusive(?). But I think now I got it:
So your explanation of DH is what made it clear for me: DH is the protocol used for key exchange, and it does not serve any other purpose. BUT, if we have an IP address and try to do the key agreement for further secure communication, if there's no authentication provided then there could be a man-in-the-middle attack where a 3rd party would negotiate a key with me, another key with the server and basically proxy our messages to each other, changing or keeping what served it best. So we need to know we are really communicating with the server and that's where the authentication comes.
So, I believe that the Client Hello is encrypted with the server's public key (which can be found on the certificate) and the server will sign the Server Hello. Is this what happens, or am I missing something?
Great video as always. Thank you for the content.
Cheers!

Thanks for the long videos, they need to be long. I am loving it.

Mate you are awesome, for english not being your first language your fluent with your words and a great teacher, i appreciate your knowledge and you being able to share it, had a good laugh at some of your jokes too, good guy, keep it up brother, subscribed and shall be looking for more good information from you

Hi! great video, from my understanding there is one part missing regarding SSL and it's interaction with the exchange:
Client generates Priv key (CKpriv)
Client generates a random key (RK)
Client generates a public key using RK and CKpriv to make (CKpub)
Client sends CKpub and RK to the server
Server has SSL keys for pub and priv that can undo each other (SSL-pub) & (SSL-priv)
Server generates priv key (SKpriv)
Server combines CKpub and SKpriv to make (Shared-key)
Server combines SKpriv and RK to make (SKpub)
** this is the difference **
Server encrypts SKpub with SSL-priv to create (SSL-SKpub)
server sends back SSL-SKpub and SSL-pub
Client then verifies Server is the server it was expecting by verifying SSL-pub,
Client Once SSL-pub is verified decrypts SSL-SKpub with SSL-pub, resulting in (V-SKpub)
Client then combines V-SKpub and CKpriv to make (Shared-Key)

You really save a computer science student who almost know nothing about TLS but her teacher insists on doing a related project!

thanks for this! love the humour you add to the videos
The server hello, is not the certificate. That happens right next.

Very nice explanation!! Thank you
I have one question, what do you mean by client locking the server's public key at 11:32. Does it encrypt the server's public key with the client's private key?

Really cool stuff. TLS 1.3 explanation is so succinct.

Great video using pictures. As they say a picture is worth a thousand words. Thank you for making it easier to understand.

I really enjoy your video's.
I have a question that you may have had many times before... what do you use for the effect on your mouse? Or is it a wacom pen that you use? Even then... how do you do it? :-)

Hey Hussein, could you explain why HTTP is stateless even though it relies on a stateful TCP protocol to establish connections?

Does TLS obsolete the use of server certificates or will they still be used and TLS just speeds up the key exchange and decouples it from the certificates?

Great explanation, thanks a lot!

Love your explanations. Great videos!

I'm getting "The underlying connection was closed: An unexpected error occurred on a send." and a think that is something about TLS... any help?

There is something I do not understand:
You said about TLS 1.2 in 12:03 "If someone got this (symetric key) ... they just decrypted the whole thing"
Is it just the same for TLS 1.3? If someone got the generated symetric key (pub key + private key + pub key) ?

Diffie-Hellman is fast and also isn't reliant on a single point of failure (private key), but it is hopelessly defenseless against man-in-the-middle attacks.
Can never have best of both the worlds in computer science ever man..

I got my CKAD after learned from your videos about infrastructures and now I am learning backward.. lol
Salute from South Korea.. :D

thank you bro ,i had one defect about tls after this video am very happy gained knowledge about tls , once again thank you broooo

Thanks for the really nice explanation. One question though : at 13:30 you mentioned , an access to server private key can be problematic since anyone with that key can decode the secret key. In the new algorithm, client key + public key is passed, with the same logic of access to server private key then the golden key can also be created. Isnt ? I am not sure if this oversimplying of problem.

Thanks so much for this video tutorial.

you just blew my mind!!! specially TLS 1.3...

And BOOM! The lightbulb goes off... THANK YOU!!!

Excellent one Nasser. This has addressed all my doubts around this topic. On a different note, I have very serious security problem with one of my public apis for which I could not find solution around. Is there a way we can connect on it Nasser?

Hi Hussain, just wondering if you share something on intercepted proxy. In my current org they use the same. Whenever I make any bank connection via chrome I could see the certificate says intercepted proxy. I think it is for any connection I make. What are they and what kind of info my org is getting.Are they see my credentials.

Very good video on DH key exchange process and of course TLS 1.3. Thanks Nasser.

if my application uses(for instance online shopping application ) plain tcp protocol for connecting to our partners' hosts who process payments, tcp is not secure way for transmitting data? TLS X.X or SSL will be applicable only for https (Application Layer protocols)? or TLS/SSL its self a protocol which can work on top of TCP?
Also, Say for example a payment processor shared http endpoint which is TLS enabled one. and I am connecting it with tcp --- how the encryption/decryption happens at both ends ?

thank you sir u explained very well and your way to teach is amazing!

In TLS 1.3, how does the client verify if the server is indeed what it says it is?
Im TLS 1.2, we verify the servers identity using the server certificate(which contains the public key of the server) that server sent in response + a trusted CA.
But how do we do it in TLS 1.3 @Hussein Nasser ??

guys if you are having trouble understanding this, I would recommend watching khan academy's video and then coming back to this one, you are going to truly appreciate his explanation.
@Nasser awesome stuff man

You are amazing. This was super useful!

Good explanation, thank you!

Nice, simple way you explained. Thanks

May be one video on how to present or give a lecture too!!!!!!!!! This is too good and engaging...

Good video however I don't understand how TLS 1.3 is more secure if the eavesdropper has either the private key of the server or the private key of the user he would be able to get the final key correct? doesn't that make it two points of failure instead of one in TLS 1.2?

Really loved all your video. Keep going

Nice job!Thank you.

Great explanation!

how the server ensure security of red key, can't it be generated by some random third party and get hand of the (blue+pink) key and generate the golden key??

Excellent video on TLS 1.3

Sir, rigth now im using metabase to make connection between metabase and our server. But, unfortunately the connection from the metabase is interrupted, here is an error message from the metabase : The driver could not establish a secure connection to SQL Server by using Secure Sockets Layer (SSL) encryption. Error: "The server selected protocol version TLS10 is not accepted by client preferences [TLS13, TLS12]".
do you know this problem?

THANK YOU SO MUCH amazing explanation !

Where can I see the actual data exchanged and their binary format? Because all tutorials I've seen so far are just overviews, no actual meat.

So with TLS 1.2 the only thing you would have to deal with if you are a hacker would be the SYN ACK stuff the TCP generates (spoofing ot whatever is necessary here?) And that's principally why it is insecure?

dude you are so cool and explain so well haha thanks

Dude, Awesomely Explained!

Pretty sure that encryption occurs in the session layer. Layer 5.

Hi Hussein, your videos are of great source of learning, thanks a lot, it would be even better if you could create a blog of the video and share the link by this way it would be way comfortable for people like me to read than to watch

Thank you SO MUCH. This is amazing

Thank you very much for your video. One question, in TLS 1.3, how does the client get the blue and pink key?

Thank you again nice explanation ... Can we see the public - private key which is sent in browser?

I'm a little bit confused, I'm already generating Diffie-Hellman Parameters and using them in my nginx config with TLS 1.2. What's the difference between TLS 1.2 with DH-params and TLS 1.3?

If blue and pink keys are unbreakable then how receiving server get the blue key?

Thanks! This is a great video!

Great video, one question. Is elliptic curve diffie hellman possible in TLS 1.2? Or only in TLS 1.3?

Excellent info! Thanks

question: As I see all of this stuff can be done in the client + server and no need for a third party. So why there are companies who provide certs and they get money for that?

Thank you for this video, good illustrations and great explanations. However I got carried away too often by the anecdotes and the comments. Don't get me wrong, we need anecdotes+jokes to "spice up" an informative video and make it interesting, but in that one I felt that the balance between information/comments isn't optimal as I kept losing track of the explanations.

Great video and effort. Could you share the titles of books you have read which help us to improve the fundamentals.

Awesome video!

This video length and format I would say as well but the length mainly is perfect because at the end of the 24 minutes if you spend about 6 minutes reviewing everything and then you watch the video again one more time you're getting about three times the retention rate

I just read that you are from Bahrain! I guess living in California is probably the same climate but with more booze!
Also, you know the pointer that you use in your videos? It reminds me of when a Simpsons character is nervous and darting his/her eyes back and forth.
I wanted to tell you that!
Glen

Are we right in saying
Standard TLS - 1.2
Enhanced TLS - 1.3

Hi Hussein. Just a small question. How can server send back red key, pink key back. You said no one can break blue, pink key pair.
All answers are welcomed. Please do write if you know the answer.

21:41, so alladin cannot intercept the chat by taking public+private from client and behave like a middle man here. Like middle-man-attack?

I don’t see how 1.3 is more secure. Your argument against 1.2 was if someone gets the servers private key they easily get the golden key from that encrypted message at the start.But if they have that private key they can just as easily combine it with the pink+blue key from the first message to get the golden key as well.
So either way stealing the servers private key is game over for both versions. And cracking the encryption some other way without knowledge of any private key should be equally hard unless the way of how the encryption with the golden key is done is fundamentally different. Edit: nvm I just saw your answer to another comment.

What will happen, If at first exchange Aladin get Blue+Pink and next return exchange Aladin get the Red key? And Jine, Combine Blue+Pink+Red = Create GOLDEN KEY So, Aladin get GOLDEN KEY !!!!! OMG !!!
Awesome Explain. Thanks

Thanks Hussein I do like your videos

Doe the regeneration of the keys happen with every request with TLS1.3? And do we still speak of certificates?

Nice explanation.
TLS 1.2 also vulnerable to CCS attack. So still we are using that.
how ?
What is secure consideration their following?
Answer please.

What do you mean by merging the public and private key in TLS 1.3 ? is it hashed ?

Thank you Hussein, please can you share the science of encryption links.

Nice video. I am not able to find link to video by professor. I searched in description. Would you please post link?

Appreciated for your video. It's valuable. BTW, could you create a real practice example from the start of generating key ( RSA or other key types, algorithm, and so on), self-signed and export for using between both side.

What if middleman gets that key during the handshake part? Then he will be able to decrypt all the data. Is there anything special during handshaking?

Sir Nasser but I read TLS 1.2 uses ECDHE_RSA does TLS 1.2 also uses Diffe Hellman?

Hussein is the GOAT!

Where is the implementation of certificate authority?

you just showed the very true world very clearly :)

Why TLS not using asymmetric encryption, it is more secure then symmetric right ?