Room 1 - Level 3 

15:00 - 16:00 


Talk (60 min)

Unlocking The Secrets Of TLS

You open your browser, type in a domain, hit enter, and then bam, a secure connection! Did you ever wonder how that happens? How do we magic a secure connection out of thin air without any prior physical meeting to shake hands and exchange encryption keys on a USB drive? We can't just send our encryption keys to each other over the Internet, so how do we do it?


In this talk we're going to take a deep-dive into what's known as the TLS Handshake, the mechanism we use to establish secure connections on the Internet. We'll look at how it works, we'll look at some of the mistakes we've made and the resulting harsh lessons we've learned along the way, and we'll demistfy this seemingly magic process of creating secure connections from nothing!

Scott Helme

Scott Helme is a security researcher, consultant and international speaker. He can often be found talking about web security and performance online and helping organisations better deploy both.

Founder of, a free CSP report collection service, and, a free security analyser, Scott has a tendency to always be involved in building something new and exciting.