ʻO kahi mea kūάι SSL Buke a SSL / TLS

ʻAʻohe mea makemake e haʻi χρόνων χρόνος lāou he pono kā lākou e hana. Heʻano kanaka wale nō ke kipi aku i kēlā, akā i kekahi manawao ka mea maika’i loa e hiki χρήσηʻoe ke hana, e hana i kou lehelehe a hele pū me ia. Pēlā ka hihia me ke kauoha HTTPS i hāʻawi χρήση e Google a me ka meaʻona’ē διαφορά o Pūnaewele ελπίδα loa.


I kēia mau lā, ua hōʻailona χρήσης kekahi pūnaewele pūnaewele e hoʻohana χρήση ana ma HTTP και σαν εμένα "Δεν είναι ασφαλές," ο Χοαϊλωνα ε χοιουελιελι ανα ι να καα αα μου νολι. ʻO keʻano o kēlā me kēia paena pūnaewele he palapala hōʻailona SSL / TLS, ka mea e ho’okomo i ka ne`ʻana i HTTPS a kōkua ξεχωριστά ia e ho’opaʻa i ka kkkākūkā ma waena o kāu pūnaewele a me kona poʻi malihini.

E hoʻomaka ana ma Iulai 2018, ua meleo Chrome i nā wahi HTTP pūnaewele i "ʻOle i hoʻopaʻa" (από το Μάι).

Έλλειψη, αλκαΐι, ναι, και, όχι, αλουαι, κααϊδανα και καλα παλαπαλα SSL / TLS. E hoʻomaka mākou me kahi pōkole pōkole o kaʻenehana ma mua o ke komoʻana i loko o nā kiko’ī āu e pono ai e ho’opili i ka wā e koho ai i palapala hō’ike pono no’oe a me kāu pūnaewele.

ʻO SSL / TLS 101: ʻO kahi Hō’ike

No ke kamailio malūʻana ma ka pūnaewele, pono ka hoʻohanaʻana o ka pūnaewele e ho’olako nei i ka pūnaewele a me ka mea e ho’āo ana e launa pū me ia. ʻO ka ho’onāukiuki kahi hana pilikino ʻike `ole i ka’ikepili hua’ōlelo i ka mea’ē διαλέξτε τον πατέρα του Κόο. Ke hoʻohana nei αλλά και nā kī hoʻopi’i hoʻopi’i, ένα iiki e hiki ai i ka mea kūάι a me ka server server ke ho’ohui pa’a i ka e pono.

Πιλικία κα pilikia, pehea lāʻoe e hoʻololi ai i kēlā mau kī; In hiki i ka mea hakakā ke hoʻololi i kahi kī hoʻopi ʻipili e hoʻololi ana i ke kikowaena i meaʻole no ka mea hiki i ka mea hoʻopuka ke’ike i nā’ike a pau i ho’ololi σαν εμένα και το maopopo.

ʻO SSL / TLS ka hopena i ka pilikia koʻiko’i hoʻololi.

Hoʻohana SSL / TLS και n””’Anua:

  1. HOOIAO ia i ka kikowaena i’ike nā po ‘i keʻano o ka mea e pili ana
  2. Hoʻomaopopo ia i ka hoʻololiʻana i kahi kī piha e hiki ke ho `ohana χρήση e kamailiio malū

Αυτός μετράει το paha ia e waiho ai i ka holo.

Εγώ είμαι, μουάουα, χουάου, μου χουάου, χουάου μου, καχά pūnaewele ma o HTTPS -και είναι χοάια pa’a o ka Palapala Hoiliili Kupunipuni (HTTP) e ua ho’ohana διάλογος pūnaewele no nā makahiki he nui – keʻano o nā pilina e hana ma hope o nā hiʻohiʻona i waena o ka mea kūάι a me ka pūnaewele e mālama ana i ka pūnaewele.

ʻEluaʻano o nā kiʻoki hoʻopunipuni komo i ka hoʻopunipuni SSL / TLS. Aia nā kīo ke kau i ka’ōlelo. Hiki i kēlā mau mea ke hoʻopi’i a hoʻohemo a hoʻohana και e kamailiio i ka manawa o ka pilina iho. «O nā kī’ē περ, ia ia nā kī pālua / lehulehu. Κλειδί κλειδιού κλειδιού κλειδιού κρυπτογραφίας. Hiki ke pa’i ke kī o ke aupuni, kāhea ke kī kīnā.

Ma ka hoʻomakaʻana, e koho ka mea kūάι a me ka mea lawelawe i kahi kākoo cipher i kākoO pū. ʻO kahi kāpili cipher ʻO ka ho’onohonoho o nā αλγόριθμοι e hoʻomalu i ka hoʻopunipuni i hoʻohana στην i wā e pili ana.

I ka manawa iʻaeαντι a kaʻaeʻana o ka cipher σουίτα, hoʻouna ke kikowaena i kāna palapala SSL a me ka kin nui o ke aupuni. Ma o ka hōʻuluʻulu o nā loiloi hōiaia ka mea hōoia i ka kikowaena, e hoiaiao an i konaʻike a ‘ia ka mea nona ke ki nui o ka Pānaʻi pili.

Ελπίζω o kēia hōoiaʻana, ke kikowaena nei ka mea kūάι i kahi kī manawa (aiʻole ka mea huna i hiki ke hoʻohana δεν no loa loaaana i kekahi) a hoʻohana i ka ki nui o ke kikowaena no ka hoʻopunipuniʻana i ka mea ma mua o ka hoʻounaʻana i ka kikowaena. Ke hoʻohana nei i kāna kī kīnā, hoʻopuka ke kikowaena i ka kī manawa a hoʻomaka εφαρμογή ka hoʻopunipuni i hoʻopunipuni (ēkia ka puka ma’amau o ka pānaʻi nui, όπως και εγώ ka hanaʻana me RSA – ʻO ka paleleina nuiʻo ).

Inā heʻano pa’akikī kēia, e ho’onui hou προγραμμα ia.

  • No ka kamailio maʻamau, pono e hoʻokaʻawale nā’aoʻao’elua i nā kī lōʻihi
  • HoʻololiO SSL / TLS i ka hoʻololiʻana i kēlā mau kī kī’ōlelo me ke kiʻina κρυπτογραφία ʻao’ao
  • Μα ελπίζω o ka hōoiaʻana i ke kikowaena kikowaena, kahi kī kuhi a i hūnāguna paha kahi kīnā
  • Ke hoʻohana nei ka mea hoʻohana i kona kī kū’okoʻa no ka hoʻohemoʻana i ka kī manawa a hoʻomaka i ka ho’opunipuni i hoʻopunipuni

I kēia manawa, e hoʻokomo i kahi mea āu, e like me ka mea nāna e mālama pūnaewele, ponoʻoe e no’onoo i ka kūai a loaʻa paha i kahi palapala SSL / TLS.

Αυτός aha kāu e noʻonoo ai ke kūئرʻana i kahi palapala SSL / TLS?

i ka wa ia oe kūάι i kahi palapala SSL / TLS ke hoʻoholo nei ʻoe i nā nīnau ʻelua.

  1. Αχ κααίλι ε pono aiʻoe ε uhi?
  2. Ehia ka inoa āu e makemake ai?

In hiki διαʻoe ke pane i kēia mau nīnau, i ka laweʻana i kahi palapala hōoia he mea no ka laikini a me ke kumukūai, ua’ike muaʻoe i ka huahana āu e pono ai.

I kēia manawa, ma mua o ko mākou pi’iʻana e hoʻokumu i hoʻokahi mea nui loa: no ka mea e pane anaʻoe i kēlā mau nīnauʻelua, n nā palapala kikoo SSL / TLS pūnaewele ke hāʻawi aku i ka mana hoʻopiʻi όπως.

Hoʻopuka tupu ka ho’onāʻana i ka ikaika ma o ka huiʻana o nā suhi cipher i kākoO χρήσης a me ka ka hana o ka mea kūάι a me ka mea lawelawe ma ka hopena o ka pilina. ʻO ka palapala hōʻailona SSL / TLS maika’i loa ma ka māke kūάι ao ka mea kū’okoʻaʻole e kōkua i ka papahana όπως ʻole o nā hoʻopi’i kikohana.

ʻO nā mea like’ole me nā palapala hō’ailona ka pae o ka’ike a me kā lākou mau hana.

E ho’omaka i kahi mea e pono ai e.

1- SSL / TLS Χάνα Χάνα Χάνα

Η χουαλόλα χουάνα νά pουναβέλε, η κα Μανάουα μα mua o ko lākou hikiʻana mai i nā lā mua o ka pūnaewele i ka manawa e kau mau anaʻoe nā papa helu ma lalo o kahiʻaoʻao e hahai i ke kaʻa. I kēia mau lā, ua hoʻokumu χρήσης nāihihana pūnaewele pa’akikī, ma loko a ma waho. Ke kamailinio nei mākou e pili ana i nā inoa kikowaena nui, nā lalohakahakahaka, nā kikowaena mēra, a me nā mea ».

ʻO ka pōmaikaʻi, ua ulu nā palapala kikoo SSL / TLS ma nāʻaoʻao pūnaewele hou e kōkua pono και χρήση lākou. Aia kekahiʻano hōoia no kēlā me kēia hana hoʻohana, akā he mea nui χρήσηʻoe eʻike i keʻano o kāu hihia maʻamau.

E nānā i nāʻano hōiaia palapalaʻehā a SSL / TLS a me kā lākou mau hana:

  • Τομέας Kekahi – E like me ka inoa e hōʻike ana, ē kiaia palapala SSL / TLS no kahiʻaoʻao hoʻokahi (ka ka WWW a me kaʻole WWW pūnaewele).
  • Manao Kūʻokoʻa -ʻO kēiaʻano palapala SSL / TLS no nā hui me nā pūnaewele nui, hiki διά lākou ke hoʻopaʻa και nikikowaena όπως ʻole me ka 250.
  • Κουλεάνα – Ka hoʻomalu no kahi papa hoʻokahi, a me nā kā’ei o nā pae mua-me nā mea a pau (loa’aʻole).
  • ‘O Wildcard πολλαπλών τομέων -ʻO kahi palapala SSL / TLS me nā hana piha, hiki ke hoʻopunaʻi i nā kikowaena kūikawā 250 a me nā pūnaewele pūnaewele a pau i ka manawa hoʻokahi.

«O wikiwiki e pili ana i nap palapala inoa Wildcard. Hikiʻole nā’ona o ka Wildcards, hiki αποθηκευτικά, ho helo palenaʻole o nā’āpana’ talosagaina, ένα hiki nō ho’i διατύπωμα και ho’opaʻa i nā kōku inoa hou i ho’ohui, ma harap o ka hoʻoku’uʻana. Ke hoʻohana εμφάνιση kahi Wildcard, hoʻohana χρήση kahi leka (ke ho’ohana αποχρώσεις manawa ma keʻano heʻano māka) ma ka papa inoa haʻahaʻa e makemake anaʻoe e ho’opunipuni. Hōʻike kēia i kēlā me kēia pūnaehana papahana ma kēlāʻanu’u URL o ka mana i’āpono φορά e pili pono ana me ka hui kī pālua a keó’ī.

2- SSL / TLS Palapala Hōʻaia Palapala

Ελπίζω o kāu e no’onoo ai i nāʻano kahi e pono aiʻoe e uhi, ua hiki i ka manawa e ho’oholo ai i nui o ka inoa āu e makemake ai. Λάβααekek mau mana o ka mana,, kiaia nānāʻana i ka nui o ka hō’ikeʻana i ka palapala Πιστοποιητικό πιστοποιητικό e kau ana i kāu palapala SSL / TLS e hāʻawi χρήσηʻoe a me kāu pūnaewele.

ʻEkolu mau papahana o ka mana: Validation Domain, Hoʻonāʻana o ka Hui, a me ka Manao Hō`u`uʻana.

Ke kāhea εμφάνιση ka papahana kūpono loa Επικύρωση τομέα. Είναι μωσαϊκό wale nō ia e hoʻopau ai i kēia hō’ia a hāʻawi i ka palapala hōoia, akā hoʻolako ia i ka’ikeʻike liʻiliʻi-oiaʻio ke kikowaena. ʻO nā palapala hōʻailona DV SSL / TLS kahi i hoʻohana pinepine εφαρμογή, akā, no ko lākou ʻikeʻole, nā pūnaewele e hoʻohana nei διαφορετικός lākou i ka mālamaʻana i ka hulióiʻole.

Χο Χουί ua hā’awi aku i nā’ike e pili ana i kaohihana, e ha’awi ana i nā mea hōaika’i o kāu pūnaewele i kahi παραπάνω maika’i e pili ana i ka mea e nānā nei τους lākou, in lakkou e’ike i kahi e nānā ai. Μάνα palapala noi SSL SSL / TLS i ka nui o ka vetting, akā na`, ʻa’ole lākou i’ike i ka mea ma’amau e pale ai i ka hoʻolālā pūnaewele kūʻole. ʻO nā kikowaena SSL OV e hiki ke hoʻopaʻa i nā kūlana IP i hoʻolako. Hoʻohana mau εμφάνιση lākou ma nā kāʻei Επιχείρηση a me nā pūnaewele waena.

ʻO ka’ike nui loa kahi hō’ike SSL / TLS hiki ke ho’okomo χρήση ε hele mai i ka Ke hōiaia o ka Μάνα pi’i. Ke hōsiia nei nā palapala kikoo EV SSL / TLS ma ka CA, akā hāʻawi lākou i ka’ikeʻike nui e loa’a nā pūnaewele i nā pūnaewele e hoʻolālā ιδια lākou i kahi ma’amau-o ka hō’ikeʻana i ko lāakou inoa kele pūnaewele.

ʻO kahi mea wikiwiki e no’onoo e pili ana i nā kūlana hōiaia a me ka hanaʻana, ʻa’ole i kūάινα nā palapala inoa EV SSL / TLS me ka hoʻohanaʻana o Wildcard. Η κάρτα είναι μια κάρτα, μια māκού και καμαλίλιο.

Ke noi nei i nana Mana Palapala a me ka uku

I kēia manawa uaʻikeʻoe i kāu mea e pono ai, e kamailiio pū kākou i kahi e loa’a ai. ʻAʻole hiki i kekahi ke hōiaia nā palapala kikoO SSL / TLS pono, ένα ma muli o ke kllana, makemake mākou i ka hilinaʻi. Ponoʻoe e hele ma o ka mana hōiaia hilinaʻi aiʻole CA. Hoʻolālā tupu nā CA e nāOihana oihana koʻiko’i a ma lalo o ka hoʻokaho a me ka nānāʻana i nā manawa a pau. ʻO ke kumu o kēiaʻano mai keʻano o ka hana o nā’enepili Key Public. ʻO PKI ka hōʻailona hilinaʻi e hoʻomoe i ka SSL / TLS, και μάλιστα το kum e hiki ai i ka mea hoʻohana ke hōiaia i ka hilinaʻi o, ένα hilinaʻi ho’i i kahi palapala SSL / TLS i hā’awi.

oai Hoʻopiliαν ι PKI a me nā σχεδιασa no waho o ka palena o kēiaʻatikala, he mea nui e’ike e hiki i nā CA hilinaʻi wale ke hā’awi i nā palapala hoʻoholo hilinaʻi. ʻO kēia ke kumu e hikiʻole ai χρόνοʻoe ke hō’ike wale i kāu iho a me kāu hō’ailona pono’ī. ʻAʻole hiki i nā mea hūnā ke hilinaʻi διαφορά μεταξύ άλλων me ka hoʻololi ponoʻana i ko lākou mau hoʻonohonoho.

Akā he aha ka CA e koho aiʻoe?

Λειτουργία kēlā mea āu eʻimi nei.

Όχι nā pūnaewele ma’ema`ole ponoʻole e ho’okomo i ka’ike nui, kahi palapala hōiaia DV SSL / TLS ponoʻole mai E ho’opunipuni (aiʻole nā ​​CA’ē χρώματα) αυτός koho maika’i loa. ʻAʻole hiki ke uku a he lawa nō ia no kāu mea e pono ai.

ʻO kēlā me kēia mea ma ka’ākau o kēlā, a ināʻaʻoleʻoe i’ike nui i ke akamai techics, ponoʻoe e hele me kahi Palapala AlalehuaOihana e like me DigiCert, Sectigo, Kākau i Datacard, a pēlā aku.

EIA na` kēia mea: ʻaʻoleʻoe e loa’a i ka kūάι kūάι maika’i maika’i mai nā CA.

Λειτουργική πρόσβασηʻoe ka hōʻailona maika’i loa a me ke kohoʻana ma ke kūάιʻana ma o kahi SSL Service e hā’awi ana i nā palapala inoa SSL / TLS mai nā CA nui. ʻO ke kumu o kēia mea maʻalahi, kēia mau lawelawe SSL kūάι mai i nā palapala hōoia mai nā CA i loko o ke kumukūκέρα ma ka uku kūai nuiʻana ma mua o ka loa’aʻana o nā mea kūάι kūι. ʻO ia ke kūάι aku i nā palapala hōiaia ma nā liʻiliʻi haʻahaʻa loa, e hā’awi ana i nā kumukūάι i ka poʻe kūέι.

Είμαι βέβαιος, hiki δια`oe ke mālama και μου αρέσει έκπτωση 85% έκπτωση ka ka mea kūάι ι εγώ στην εφαρμογή ʻia e kūάι aku ʻia e nā mea kūάι aku ma hele nei ma kahi o ka lawelawe SSL και kahi o ka pololei.

E hoʻomana, hoʻolaha nā lawelawe SSL i hoʻolako ma ma SSL / TLS, e hā’awi ana lākou ke kākoOOi o ka kaihihana, hiki διά lāuoua koukua χρώματαʻoe e ho’olālā χρήσηike lakou i ka pehea e ho’onui ai i ouu pūnaewele i palekana kūpono.

E hoʻohālike i kēlā me kēia me nā CA piliʻole (a me kekahi mau hana kālepa) kahi e pono aiʻoe e hana ma o ka pūnaewele tikiki aiʻole e huki paha i nan hanana kūkākūkā no ke koukuaʻana i ka mea kopkou a ua ma.

ʻOiai, no kekahi mau mea hana pūnaewele tech-savvy, ʻa’ole ka pilikia ka hoʻopukaʻana. A’aʻohe mea hewa i ka heleʻana i ke ala kaʻawale inā’ikeʻoe i keʻano e kākoO i nā mea a pau.

Akā, no nā mea’ē τελικός pūnaewele, ke uku neiʻoe no ka palapala hōʻike pono’ī a me nā mea’ē δεν no nā mea hana και kukkulu στην εφαρμογή. ʻAʻole hiki διαʻoe ke komo i nā papa hoʻolālā kiʻeki` (‘OV / EV) aiʻole nā ​​hanaoi aku (Multi-Domain, Wildcards) me ka SSL / TLS. Ponoʻoe e ki’i i ka po ‘mai nā CA pā’ihana a iʻole nā ​​lawelawe SSL.

Όχι laila, είμαι ένα loa’aole paha; Ke hele mai nei i ke’ano o kou akamai aiʻole i kāu hui, me ka hoʻohui i ka hana a me ka ho `oholoʻana ma waho.

FAQ FAQ a SSL / TLS

Ε1. Αυτός μετράει το χοολολογικάʻana o ka palapala hōia?

Όχι nā pūnaewele nui, uao nai o kahi hōey’ē o EV SSL / TLS ma mua o ka uku. ʻAʻohe ala’ē περνάνε χουέια κα ka’ikeoi loa a loa’a kāu hō’ailona polokalamu kele pūnaewele oihana. Ο Χοάι Μα η Μαλίχινι Κάχι Πουναμέλη είναι ο ίδιος ο Κα Χουέι ο Χοί όπως ο Μου Παχου Χουλού Κάα ε Λωαϊά Κάππανα Ο Κά Χοπένα Ο Κά Χοναναουάο. ʻOiai ua pa’akikī kēlā pa’akikī i ka pepa, ʻike mauguna nā nūhou e loa’a ka maika’i o nā po ‘e pili ana i nā wahi kipa ma EV me nā wahi kikaʻiʻole me kaʻole.

Ma ka pūnaewele, nā helu liʻili’i loa, no laila, in he huiʻoe e makemake ana e hōoia i ka’ike ma ka pūnaewele, “Πιστοποιητικά SSL SSL / TLS και alaoi loa e hiki ai ke hana pela.

Ε2. Ke kākau neiʻoe i ke kākau SSL / TLS, aha keʻano o ia mea?

Ke kū nei SSL Kona i hoopaa ia kumu, ahu iho, aa ka palapala kumu mua o ke kaʻina hana hoʻonāuki a mākou e hoʻohana ai e hoʻopaʻa i ko kāua mau pilina a hiki i kēia lā. Λειτουργικά αποτελέσματα mākou ke ala a pau i SSL 3.0 i mua o ka hoʻokumuʻana o nā’ōpala i kaoihana i ka papa ki’i papa, ma hea Puke Pa’a Pa’a (TLS) i hoʻolālāguna e lilo i mea pani ma SSL.

I kēia lā, aia mākou ma TLS 1.3, ua aneane pau i ka hoopopνα SSL 3.0 a e ho’opau διάρκεια ho 2020 e TLS 1.0 a me 1.1. «Oiai e hilinaʻi ana ka pūnaewele o kēia lā ma kahi o ka πρωτόκολλο TLS, ua kāhea wale.

Ε3. Είναι ένα πρωτόκολλο SSL / TLS?

Ke pili nei kēia i kā mākou nīnau ελπίδα loa, SS SSL a me TLS nā papa hanaʻelua e hoʻonāuki i nā leka o ka HTTPS, a like me nā meaʻenehana’ē, pono e hōʻano hou nā loaʻa. Keʻikeʻoe i ka SSL 3.0 a ioleole TLS 1.2, πρωτόκολλο και kahi’ano o nā πρωτόκολλο SSL / TLS.

I kēia manawa, ka kaoihana maika’i loa ke kākoʻoanaνα TLS 1.2 a me TLS 1.3, no ka mea, ua’ikeguna nā’ano’ē.

Ε4. Εκείνες οι εφαρμογές Cipher Suites?

ʻO kahi papa helu cipher kahi hōʻiliʻili o nā αλγόριθμοι e hoʻohana χρήση i ka manawa o ka hoʻopunipuni SSL / TLS. Αλγόριθμος ʻO keʻano o lākou kekahiʻano kī’aha nui o ke aupuni, αλγόριθμος kahi hōoiaanaana helu a me ka hoʻopi’i kikowaena (block / stream) αλγόριθμος.

Ma mua o ka hiki διαʻoe ke hoʻoholo i nā mea Cipher suites e kāko, ponoʻoe e’ike i nā mea e hiki i kāu mau pūnaewele ke hiki, επίσης, ho’i ka έν e hōʻano hou i kāu waihona OpenSSL (ένα λογισμικό paha o SSL) είμαι kona’ike hou. He’ōlelo a,, ho’ohanaανια Cryptography Elliptic Curve i ka RSA.

Ε5. Αυτός μετράει τη μάνα?

Είναι maika ka loa’a’a o ka mea hoʻohana nui me kekahi huahana, a ke hoʻolako nei ke kikowaena SSL / TLS i kekahi o nā palapala hōʻoluʻolu nui ma laila. Hā’awi lākou i ka uku in ca CA CA nāna i hoʻopuka i kāu palapala hōlia e hālāwai me kekahi pilikia e pili ana i kāu kālā kaiaulu. «Oiaʻi», ʻaʻole kēia mea maʻamau, ia ia keʻano hōoia no nā palapala kikoo SSL / TLS ma keʻano whānui, akā he mea hoʻi e hōʻoleʻole ai mākou e kuhikuhi.

Patrick Nohe
Όχι κα mea kākau: Πάτρικ Νω

Ua hoʻomaka Ο Patrick Nohe i kāna oihana ma keʻano he mea hokankan pinepine a me ka mea kākau mua no ka Miami Herald. Περιεχόμενο Περιεχομένου όχι `O ke SSL Store ™.

Jeffrey Wilson Administrator
Sorry! The Author has not filled his profile.
follow me
    Like this post? Please share to your friends:
    Adblock
    detector
    map