1
00:00:00,150 --> 00:00:08,280
All right, welcome back, my friends, this session is about understanding the steps because we we

2
00:00:08,280 --> 00:00:10,230
have just learned about GDP.

3
00:00:10,800 --> 00:00:16,510
This is all about the exchange that happened between browser and the Web application.

4
00:00:16,530 --> 00:00:20,060
This is all about understanding how the Internet works.

5
00:00:20,520 --> 00:00:27,730
This is all about understanding how how all the traffic really works.

6
00:00:27,790 --> 00:00:31,330
OK, so we have just got an idea about a city.

7
00:00:32,220 --> 00:00:39,260
Let's get started with steps before we jump into it.

8
00:00:39,270 --> 00:00:48,370
We need to understand what's wrong with a now, and it will sound pretty clear to you for sure.

9
00:00:48,640 --> 00:00:58,880
Now, what happened is in case of a CDB, what happened is the user or the Klein browser don't do the

10
00:00:58,890 --> 00:01:05,970
dance to the Web browser directly over the Internet right directly or the Internet to get access to

11
00:01:05,970 --> 00:01:06,790
any of this site.

12
00:01:07,360 --> 00:01:07,880
All right.

13
00:01:08,340 --> 00:01:17,640
And when it's initiated the conversation or exchanging information, it is not assurity from the SCDP

14
00:01:17,640 --> 00:01:18,970
about the user.

15
00:01:18,990 --> 00:01:24,230
Whatever you are sharing or the public network, it is confidential.

16
00:01:24,960 --> 00:01:25,710
It is.

17
00:01:25,710 --> 00:01:29,780
It is there is confidentiality maintained across it.

18
00:01:29,790 --> 00:01:30,130
Right.

19
00:01:31,290 --> 00:01:40,280
What it means is there is no assurity that whatever you're sharing between you and the Web server,

20
00:01:40,330 --> 00:01:41,670
it's going to be private.

21
00:01:42,000 --> 00:01:49,860
OK, and of course, that is pretty much obvious because the DP was initially wasn't really initially

22
00:01:49,860 --> 00:01:54,090
made from the purpose to keep your information secure.

23
00:01:54,300 --> 00:01:58,620
It was meant to have digital transformation.

24
00:01:58,630 --> 00:02:04,260
It was it was made to have a web of very application accessible for everyone.

25
00:02:04,530 --> 00:02:15,780
It is made to have a usage of of of website and available for everybody in a very simplified manner

26
00:02:15,780 --> 00:02:23,000
so that anybody can can see what what all the content present just on a single page.

27
00:02:23,370 --> 00:02:26,940
And in fact, anybody can even make a website.

28
00:02:27,210 --> 00:02:27,500
Right.

29
00:02:27,510 --> 00:02:30,770
So that was the book was the security wasn't the initial thought.

30
00:02:30,780 --> 00:02:33,230
And that's usually in most of those situations.

31
00:02:33,240 --> 00:02:42,590
But unless there is there's a threat which really brings up huge alerts or more and more alerts, jump,

32
00:02:42,820 --> 00:02:44,940
jump, jump, jump up.

33
00:02:44,940 --> 00:02:49,430
And, you know, the the threshold really comes up.

34
00:02:50,250 --> 00:02:57,210
So that's what it happens when you look at the B, B, the connection between your users, your browser

35
00:02:57,330 --> 00:02:59,820
to your server is not secure.

36
00:02:59,850 --> 00:03:01,910
It's not encrypted in a way.

37
00:03:02,670 --> 00:03:11,250
So when I say encrypted, it means that whatever information you sharing get encrypted and shared through

38
00:03:11,250 --> 00:03:12,030
the web server.

39
00:03:12,060 --> 00:03:21,480
And that's going to happen in case of a GPS wherein there is a tunnel, basically a session or an encrypted

40
00:03:21,480 --> 00:03:27,810
channel get established between your browser and the website server just like this.

41
00:03:28,140 --> 00:03:33,570
So in this situation, you have a user over here and a server on the other side.

42
00:03:33,960 --> 00:03:42,360
And whatever your user is sending and getting exchanged back and forth, there's nobody else get the

43
00:03:42,360 --> 00:03:46,050
idea what is exactly inside this data.

44
00:03:46,500 --> 00:03:51,930
And that is what that is would deliver through airstrip's.

45
00:03:51,930 --> 00:03:53,160
And understand one thing.

46
00:03:53,640 --> 00:04:02,340
Stapper is secure SCDP, SSL, SCDP, and this is possible because of SSL certificate.

47
00:04:02,820 --> 00:04:04,740
In order to achieve this.

48
00:04:04,740 --> 00:04:07,230
The requirement is the application.

49
00:04:07,230 --> 00:04:12,300
The requirement is always has to be from the application itself.

50
00:04:12,300 --> 00:04:22,350
That means the website or the website should have and basically should have assisted cert if it has

51
00:04:22,770 --> 00:04:29,130
a system certificate that only the user browser can establish the SSL connection.

52
00:04:29,490 --> 00:04:38,550
And that's pretty easier to understand is in fact nowadays all the all the banking transaction, even

53
00:04:38,550 --> 00:04:41,640
the normal site as well, where you have a login account.

54
00:04:41,640 --> 00:04:45,900
So you have some private information to share, login credentials and all the stuff.

55
00:04:46,560 --> 00:04:47,030
It isn't.

56
00:04:47,400 --> 00:04:52,710
It is it is highly recommended by every websites to have assistance certificates.

57
00:04:53,010 --> 00:04:58,410
And after that lets encrypt and many of the three services, it is not widely available everywhere.

58
00:04:58,560 --> 00:04:58,860
Right.

59
00:04:59,220 --> 00:04:59,910
So you can even.

60
00:05:00,370 --> 00:05:07,430
Then you can go to any any browser and let's say this is musila dot org.

61
00:05:07,480 --> 00:05:14,410
You can even look at on the left hand side of this log itself indicate that this connection is secure.

62
00:05:15,040 --> 00:05:23,170
And you can get the idea, OK, this this has this has got the certificate as well from the so you can

63
00:05:23,170 --> 00:05:25,630
get the more information about the certificate.

64
00:05:25,990 --> 00:05:34,780
The certificate is is is installed on Mozilla dot org, and this website doesn't supply the ownership

65
00:05:34,780 --> 00:05:35,470
information.

66
00:05:35,470 --> 00:05:40,510
The certificate has been delivered by these significant authority which would be from you.

67
00:05:40,540 --> 00:05:47,890
So there are many others Ghoulardi provide that to that very same and many other website who provides

68
00:05:47,890 --> 00:05:49,220
the certificate there.

69
00:05:49,410 --> 00:05:53,670
That was Komoro earlier now provided by Pingo as well.

70
00:05:54,400 --> 00:05:57,420
You can get to see all the certificate now.

71
00:05:57,430 --> 00:06:04,990
Even if you go to Google dot com, you will definitely find it on the top of it, right?

72
00:06:05,410 --> 00:06:11,600
This is all possible because oh, by default and provide you with such great.

73
00:06:11,740 --> 00:06:13,120
But remember one thing.

74
00:06:13,810 --> 00:06:22,400
Every Web site that you you look for even give me let me show you how that works on the other side.

75
00:06:22,420 --> 00:06:22,660
Yeah.

76
00:06:22,990 --> 00:06:23,860
This is CNN.

77
00:06:23,890 --> 00:06:25,550
You can find a link on the dot.

78
00:06:25,590 --> 00:06:33,370
But as you can see, it is provided by Google Sign and assume you can get these get the certificate

79
00:06:33,370 --> 00:06:34,120
information.

80
00:06:34,760 --> 00:06:36,410
When was it delivered?

81
00:06:36,410 --> 00:06:41,200
It's going to expire on May seven to 2021, the moment and get expired.

82
00:06:41,200 --> 00:06:47,410
You will see another message as well on the dot stating that the U.S. code is about to expire.

83
00:06:47,530 --> 00:06:51,620
This might be a problem as well when the certificate would expire.

84
00:06:51,650 --> 00:06:59,750
This means your session between between your browser to your website is no more secure.

85
00:07:00,520 --> 00:07:05,350
So it is possible that your communication may get hijacked.

86
00:07:05,600 --> 00:07:14,070
OK, so this is all about a steeps on the natural will be understanding what is needed for the station

87
00:07:14,080 --> 00:07:21,580
about how those SSL or SCDP outside the DNS communication basically happened back and forth.

88
00:07:22,090 --> 00:07:28,180
And this is what we'll be talking about as a part of corruption, hashing mechanism and everything.

89
00:07:28,300 --> 00:07:28,650
All right.

90
00:07:28,900 --> 00:07:30,660
I hope this makes sense to you.

91
00:07:30,670 --> 00:07:31,770
We'll get you in the next hour.

92
00:07:31,870 --> 00:07:32,380
Thank you.