Let's get down to a practical implementation of SSL and TLS
SSL/TLS is a standardized, widely implemented, peer-reviewedprotocol for applying cryptographic primitives to arbitrarynetworked communications. It provides privacy, integrity, and ameasure of authenticity to otherwise inherently untrustworthynetwork connections.
While most books detail the protocol, this one is intended toprovide you with a nearly complete SSL/TLS library, developedincrementally using C code. Whether or not you have a workingknowledgeof cryptography, you'll find this practical guide helpsyou understand the internals of these libraries so that, when itcomes time to use one, you will have a firm understanding of whattakes place at each stage.
Understand secure sockets and the HTTP protocol
Learn to protect against eavesdroppers with symmetriccryptography
Secure key exchanges over an insecure medium with public keycryptography and boost security with elliptic curvecryptography
Examine the use of digital signatures and X.509 certificates
Develop a usable, secure communications protocol withclient-side TLS
Add server-side TLS 1.0 support
Use SSL in advanced situations, including safely reusing keymaterial with sessionresumption and verifying identity with clientauthentication
Go to www.wiley.com/go/implementingssl to find code and otherfeatures related to this book