1
00:00:00,006 --> 00:00:02,001
- [Instructor] HTTPS is a method

2
00:00:02,001 --> 00:00:04,008
to encrypt standard HTTP traffic.

3
00:00:04,008 --> 00:00:06,006
This is accomplished in layer seven

4
00:00:06,006 --> 00:00:09,007
of the OSI model via Transport Layer Security,

5
00:00:09,007 --> 00:00:12,003
or the older secure socket layer.

6
00:00:12,003 --> 00:00:15,000
It creates a secure conduit for communication

7
00:00:15,000 --> 00:00:17,000
between the client and the server.

8
00:00:17,000 --> 00:00:19,007
HTTPS is commonly used for banking,

9
00:00:19,007 --> 00:00:22,001
online purchases and email,

10
00:00:22,001 --> 00:00:26,004
or anything and everything with sensitive or private data.

11
00:00:26,004 --> 00:00:29,006
Today, HTTPS now accounts for most

12
00:00:29,006 --> 00:00:31,007
of standard browsing on the internet.

13
00:00:31,007 --> 00:00:34,009
Encryption protects against man-in-the-middle attacks

14
00:00:34,009 --> 00:00:38,002
as well as interception of sensitive information.

15
00:00:38,002 --> 00:00:42,001
Encrypting HTTP with TLS adds the additional benefit

16
00:00:42,001 --> 00:00:44,007
of encrypting all of the underlying protocol.

17
00:00:44,007 --> 00:00:47,003
This means the exact URL, cookies,

18
00:00:47,003 --> 00:00:49,003
and headers are all hidden.

19
00:00:49,003 --> 00:00:52,004
The encryption process hinges on digital certificates.

20
00:00:52,004 --> 00:00:55,004
These digital certs contain public tokens used

21
00:00:55,004 --> 00:00:58,002
in the cryptographic process.

22
00:00:58,002 --> 00:00:59,008
They are issued by known

23
00:00:59,008 --> 00:01:03,003
and trusted certificate authorities, or CAs.

24
00:01:03,003 --> 00:01:06,000
A server that wishes to host a secure website

25
00:01:06,000 --> 00:01:09,006
must go through the certificate enrollment process.

26
00:01:09,006 --> 00:01:11,005
They first create a request.

27
00:01:11,005 --> 00:01:13,008
This request is then sent to a CA

28
00:01:13,008 --> 00:01:15,008
who generates a certificate.

29
00:01:15,008 --> 00:01:19,005
This issued certificate can then be installed on the server.

30
00:01:19,005 --> 00:01:22,001
Web browsers have a list of major CAs

31
00:01:22,001 --> 00:01:23,005
and can verify certificates

32
00:01:23,005 --> 00:01:26,001
as they are presented by various websites.

33
00:01:26,001 --> 00:01:28,000
HTTPS is essential

34
00:01:28,000 --> 00:01:30,008
for modern day web browsing communications.

35
00:01:30,008 --> 00:01:32,006
It provides the confidence necessary

36
00:01:32,006 --> 00:01:34,008
to transmit the most sensitive pieces

37
00:01:34,008 --> 00:01:37,000
of information over the internet.