Thanks Richard,

What I am looking would be any good book which gives details about SSL
communication like use of certificates, verification of certificates, APIs
to examine certificates, certificate revocation concepts/SSL APIs for that,
etc.

Regds,
Ashok

2012/1/9 Richard Könning <richard.koenn...@ts.fujitsu.com>

> Am 09.01.2012 13:10, schrieb Ashok C:
>
>  Hi,
>>
>> In addition to the online material, are there any good books which we
>> can refer to understand openSSL better? Both conceptually as well as
>> from the API/code perspective.
>> We hear of the "Network Security with OpenSSL by John Viega" as one good
>> reference. But it was published in 2002. Any good new books which can be
>> used?
>>
>
> Well, the questions of the original poster weren't OpenSSL specific, but
> targeted SSL/TLS in general, for this Eric Rescorla's book "SSL and TLS:
> Building and Designing Secure Systems" is the better book. Sadly being from
> the year 2000 it is somewhat outdated too, but nevertheless a good
> introduction to SSL/TLS. For a description of the OpenSSL API afaik the
> book from Viega et al. is still the most detailed book, despite being
> somewhat outdated.
>
> For newer versions of TLS (i.e. 1.1 and beyond) one should check newer TLS
> books, e.g. the ones from Joshua Davies or Rolf Oppliger. Until now i had
> none of the two books in my hands so i can't you tell more about the books,
> but maybe a visit at Amazon or similar book traders will give you at least
> a detailed content description.
>
> Ciao,
> Richard
>
> ______________________________**______________________________**__________
> OpenSSL Project                                 http://www.openssl.org
> User Support Mailing List                    openssl-users@openssl.org
> Automated List Manager                           majord...@openssl.org
>

Reply via email to