Certificate Authority (CA) Server | تعلم ببساطة

Description

أهلاً بكم في هذا الشرح المبسط لخوادم إصدار الشهادات المستخدمة فى أنظمة التشغيل لتوفير أمن المعلومات

استخدم هذا الكود للحصول علي خصم لفترة محدودة

B8A8D958771EB0893DFB

وفى حال إنتهاء صلاحية الكود يمكنك مراسلتى لطلب كود آخر

Certification Authority Server and Public Key Infrastructure

مدة الشرح أقل من 8 ساعات فيها المختصر المفيد لهذا الجزء

محتاج تكون متأسس فى الشبكات وأنظمة التشغيل علشان تفهم هذا الجزء جيدا

يوجد ملف ملحق مع الكورس فى المحاضرة الثانية فيه لينك الماتيريال المطلوبة

الشرح يحتوى على أجندة لكل محاضرة فيها النقاط اللى اتشرحت فى كل محاضرة

كل محاضرة ملحق بها ملف الأجندة الخاصة بها

ودى الأجندة للنقاط اللى هتتغطى فى هذه السلسلة

Certificate Server

Certificate & Certificate Importance

Web Servers (HTTP & HTTPS Servers)

Mail Servers

Remote Desktop Protocol

SSH Protocol

VPN (Virtual Private Network)

Wireless Security

Information Security EFS Encrypted File System

Web Servers Basics

Website

Web Server

Web Hosting App IIS Apache Xampp Nginx

Web Developer ex HTML  Java Script CSS  SQL  PHP  Java, Ruby Perl, ASP/ASP.NET  Python

Web Client

Web Browser

Microsoft IIS Internet Information Service

Web Protocols

HTTP   No Security

HTTPS  (Secure) Certificate

HTTP Web Server

Data Sniffing Attack          Confidentiality

Encryption (Certificate)   

Website Spoofing Attack   Authentication

Fake Website

Digital Signature (Certificate)

Data Modification Attack      Integrity

Hashing (Certificate)

Data Replay Attack            Anti-Replay

Sequence Number

HTTPS Web Server (HTTP + SSL or HTTP + TLS)

SSL (Secure Socket Layer)          ex SSLv2.0, 3.0

TLS (Transport Layer Security)     ex TLSv1.0 1.1, 1.2 1.3

SSL or TLS Needs Certificate

Uses Certificate Digital Signature for Authentication

Uses Certificate Encryption for Confidentiality

Uses Certificate Hashing for Integrity

Confidentiality

Encryption

Decryption

Cryptograghy

Cryptanalysis

Cryptology (Cryptograghy + Cryptanalysis)

Plain Text (Clear Test)

Cipher Text (Encrypted Test)

Encryption Algorithm

Encryption Key

Encryption Algorithms & Key Lengths

DES  56-bits Key              Cracked by CopACABANA Machine in 6.4 Days

3DES 112 & 168 bits Key       Needs 4.6 Bilion Years to be Cracked

AES  128,192,256 bits Key     Faster Than 3-DES (Needs 149 Trillion Years to be Cracked)

SEAL

TKIP

RC4

Blowfish

Cryptanalysis Methods

  Brute-Force Attack Method

   Super and Quantum Computers

   QCR (Quantum Computer Resistant) min 256-bits Key 

- Symmetric Encryption

  Same Key for Encryption & Decryption

  Symmetric Key Pre Shared Key) (PSK

   DES 

   3DES

   AES

   SEAL

   TKIP

   RC4

   Blowfish

- Asymmetric Encryption

  Certificate File

  Different Keys for Encryption & Decryption

  Public Key & Private Key

   RSA Rivest Shamir Adleman

   DSA Digital Signature Algorithm

   ECC Elliptic Curve Cryptography

   DH  Diffie-Hellman

  Very Very Slow

Mix between Symmetric & Asymmetric Encryption

Asymmetric (Often Used for Securely Exchanging Secret Keys)

Symmetric  (Used for Bulk Data Transmission)

HTTPS Web Server

HTTP & SSL or HTTP & TLS

SSL (Secure Socket Layer)          ex SSLv2.0 3.0

TLS (Transport Layer Security)    ex TLSv1.0  1.1  1.2  1.3

SSL or TLS Needs Certificate

Integrity

Hashing (One-Way Equation)

Hash Value (Fixed Size) (Fixed Length)

Fixed Size but Different Values for Different Inputs

MD5     128-bits Output  Faster

SHA-1   160-bits Output  Slower

SHA-2   224, 256, 384 and 512 bits Output

NTLM    128 bits Output

Hash Collision Attack

Unkeyed Hashing

Non-Salted Hashing     

Keyed  Hashing   HMAC-MD5 and HMAC-SHA

Salted Hashing

HMAC   Hashing   Hash Message Authentication Code

Hashing Provides Password Security

  Websites Users, Passwords Database

Hash Cracking

Anti Replay Attack

Sequence Number

Authentication

Site Name

HTTP/HTTPS

Trusted (Valid) Certificate

UnTrusted (Invalid) Certificate

Public CA Servers (Certification Authority Server)

Trusted CA Servers

Digicert Verisign Google Trust  Lets Encrypt  Golobal Sign

Digital Signature

Self Generated & Self Signed Certificate

Private Local CA Server

Digicert CSR Certificate Signing Request

DigiCert offers a wide range of digital certificates

SSL TLS Certificates: Providing security and trust for websites.

Multi-Domain SSL Certificates: Multiple websites under one certificate

Wildcard SSL Certificates: Multiple subdomains using a single certificate

Code Signing Certificates: Used for signing digital applications and software to ensure their integrity and authenticity

Document Signing Certificates: Used for signing digital documents in a way that ensures their safety and validity

Secure Email Certificates: Allowing encryption and signing of emails for security and authentication in email communication

Application File Integrity & Authentication

Hash Value

Digital Signature (Needs Certificate)

Remote Desktop Protocol

RDP Less Secure Basic Authentication Level RDP

RDP More Secure (Network Level Authentication RDP

  Uses SSL or TLS Needs Certificate)

Remote Web Management

HTTP (No Security)

HTTPS Uses SSL or TLS  Needs Certificate

Remote Management

Telnet (No Security)

SSH  Telnet + SSL  Needs Certificate

VPN Security

SSL or TLS Needs Certificate

Mail Server Security

SSL or TLS Needs Certificate

Microsft Exchange Server

EFS  Encrypted File System) (Needs Certificate)

Certification Authority (CA) Server

PKI Public Key Infrastructure

CA Server Installation & Configuration

Root CA

Subordinate CA

Standalone CA

Enterprise CA Domain Only

Certificate Validation and Expiration Time

CA Server Issued Certificates

CA Server Pending Requests Needs Approve

CA Server Revoked Certificates

Certificate Templates Enterprise CA Only

Export CA Certificate

Certificate Name

Certificate Serial Number

Install Certificate

Root CA Publishing Policy

IIS Request Web Certificate

Certificate Enrollment

 Manual Enrollment

MMC Certificate Console

  Web Enrollment     

 Auto Enrollment Domain Only Enterprise CA Only

 Certificate Templates Management

Revoke and Unrevoke Certificate

Hold Certificate

CA Server CRL Update (Certification Revocation List)

CA Server Backup & Restore

يوجد كوبون خصم لفترة محدودة فى الوصف الخاص بكل كورس

يمكنك إستخدامه للحصول على الكورسات بتكلفة مخفضة

ورأيك وتقييمك للكورس يهمنى جداً

ولمزيد من كورساتى المدفوعة أو المجانية يمكنك متابعة قناتى على اليوتيوب

Kamel IT Courses

الكورسات المدفوعة كاملة شاملة كل الفيديوهات والكتب والماتيريال والبرامج المطلوبة للتطبيق العملى ويمكنك تحميلها كاملة على جهازك

Available Courses:

• CompTIA A+.

• CompTIA Network+.

• CompTIA Security+.

• Cisco CCNA.

• Cisco CCNP ENCOR.

• Cisco CCNP Security SCOR.

• Microsoft MCSA.

• Microsoft MCSE.

• EC-Council CEH.

ويمكنك التواصل معى على يوديمى أو على الواتس لمزيد من التفاصيل عن الكورسات المدفوعة والتكلفة الخاصة بها

Mobile & WhatsApp Number: +201003405464

بالتوفيق دائما للجميع إن شاء الله

TAKE THIS COURSE