SSL Handshake and HTTPS Bindings on IIS

Secure Socket Layer (SSL) also known as Transport Layer Security (TLS) is a cryptographic protocol which defines how 2 entities (client and server) communicate with each other securely. TLS is the successor of SSL. You can read more about it here: These are the following protocols which are most commonly used: SSL 2.0 SSL… Read more

Working with Wild Card Certificates

Yesterday one of my colleagues came up to me with a simple problem regarding wild card certificates. I gave him the solution immediately, but it had to take a lot of convincing to do. This shows that there is a lot of confusion around how wild card certificates work. For first time readers, wildcard certificates… Read more

SSL Scalability with IIS 8 (Windows 8 Server)

One of the biggest problems with IIS on the previous versions of IIS was in regards to scalability. This restriction was at the OS level at the kernel mode. There is nothing much that we could do to address this in IIS. One cannot bind more than one Certificate to a combination of <IP:Port>. The… Read more

Taming the Beast (Browser Exploit Against SSL/TLS)

Two researchers recently discovered a known vulnerability that existed in CBC based ciphers, but was considered theoretically impractical, until then. This vulnerability exists in all CBC based ciphers used in SSL V3/TLS 1.0. The researchers Juliano Rizzo and Thai Duong demonstrated proof-of-concept code called BEAST (Browser Exploit Against SSL/TLS) at the Ekoparty security conference held… Read more

Support for SSL/TLS protocols on Windows

***********Updated on 4th October 2017*********** NOTE: Support for TLS 1.1 and TLS 1.2 is now available in Windows Server 2008 SP2. Install the following update: Update to add support for TLS 1.1 and TLS 1.2 in Windows Server 2008 SP2  Secure Socket Layer (SSL) and its successor Transport Layer Security (TLS) are protocols which use… Read more