Network Security with OpenSSL
By New York Security
Product Description
Most applications these days are at least somewhat network aware, but how do you protect those applications against common network security threats? Many developers are turning to OpenSSL, an open source version of SSL/TLS, which is the most widely used protocol for secure network communications. The OpenSSL library is seeing widespread adoption for web sites that require cryptographic functions to protect a broad range of sensitive information, such as credit card numbers and other financial transactions. Traditionally, getting something simple done in OpenSSL could take weeks. Network Security with OpenSSL gives you guidance to avoid pitfalls, and allows you to take advantage of the library?s advanced features. And, instead of bogging you down in the technical details of how SSL works under the hood, this book provides only the information that is necessary to use OpenSSL safely and effectively. The book details the challenges in securing network communications, and shows you how to use OpenSSL tools to best meet those challenges.
Network Security with OpenSSL
Network , OpenSSL , security 
March 29th, 2010
This author published 9951 posts in this site.Share
Greg W. Arnold
March 29th, 2010
I worked on a LAMP project with ‘C’ switching application behind it. This book clearly described what I needed and how to do it. Very good resource. Rating: 5 / 5
Jeffrey Z. Wolf
March 29th, 2010
I purchased this book in an effort to quickly get up speed with creating self-signed certificates for both client and server. I was able to use examples in this book to do so. I found the examples I needed, executed them as specified in the book and was able to create working self-signed certificates. So for the usage model that I had for this book, it delivered. Rating: 5 / 5
Patrick Goetz
March 29th, 2010
Although I haven’t finished reading the book yet, my level of frustration with it warrants a review. I’ll update the review if I change my mind. Setting aside the many typos (e.g. bottom of p. 86), the fact that the book is now 7-8 years out of date, and explanations of functions that are frequently less clear than the online documentation, my complaint has to do with the almost randomized organization of the material. The first chapter is an overview that focuses on jargon more than anything; in particular it doesn’t provide a clear description of exactly what happens when an SSL connection is established (the single most important detail for understanding everything that follows). This renders the second chapter on the command line interface next to useless, since it’s only somewhat clear what these commands are doing — shouldn’t this material come after almost everything else? The 3rd chapter shows how to generate public keys without explaining clearly how they’re used, and the 4th chapter jumps right into multithreading support, abstract I/O, and random number generation. Where the authors just writing down whatever popped into their heads next? Where were the editors on this project?
It does contain some useful information, hence the 2 stars, but the authors’ horrible writing style and inability to organize their thoughts really makes me want to give a 1-star review. Terrible book, although still better than the online documentation overall. And unfortunately, no one appears to have a written a better one (as of July 2009).
Rating: 2 / 5
Jeffrey W. Leinbach
March 29th, 2010
This book was a valuable resource in implementing Secure Sockets, it would have been difficult to finish my product without it. Rating: 4 / 5
B. Gemeny
March 29th, 2010
This is a great book on cryptography, OpenSSL utilities and its API. The copyright is 2002 and no second edition was ever done. As such some of the openssl command-line syntax is out-dated, but the concepts certainly are not. While I wish we could ping Viega, et al., to kick out another edition this book is a staple on my shelf, backpack or in the mess on my desk! Rating: 4 / 5