{"id":4181,"date":"2020-10-30T20:17:36","date_gmt":"2020-10-30T19:17:36","guid":{"rendered":"https:\/\/webhosting.de\/perfect-forward-secrecy-zukunftssichere-verschluesselung-fuer-webseiten\/"},"modified":"2020-10-30T20:17:36","modified_gmt":"2020-10-30T19:17:36","slug":"perfect-forward-secrecy-future-secure-encryption-for-websites","status":"publish","type":"post","link":"https:\/\/webhosting.de\/es\/perfect-forward-secrecy-zukunftssichere-verschluesselung-fuer-webseiten\/","title":{"rendered":"Perfect Forward Secrecy: Encriptaci\u00f3n a prueba de futuro para sitios web"},"content":{"rendered":"<p>Las revelaciones del denunciante Edward Snowden han demostrado que la NSA <a href=\"https:\/\/webhosting.de\/es\/personenbezogene-daten-sozialen-netzwerken\/\">Datos<\/a> en masas. Aunque no puede descifrar parte de la informaci\u00f3n hoy, podr\u00eda ser posible en el futuro. Los webmasters pueden protegerse a s\u00ed mismos y a sus visitantes hoy de la desencriptaci\u00f3n de ma\u00f1ana.<\/p>\n<p>Edward Snowden ha demostrado al mundo que ning\u00fan dato est\u00e1 a salvo de los servicios secretos. Recogen (como precauci\u00f3n) toda la informaci\u00f3n que se les presenta. Algunos de estos datos est\u00e1n encriptados, por ejemplo a trav\u00e9s de una conexi\u00f3n HTTPS. Esto incluye sitios web en los que se transmiten datos sensibles, la compra de un producto o el acceso a una cuenta de correo electr\u00f3nico o el uso de la banca en casa. Todos estos datos son interceptados, aunque hoy en d\u00eda son in\u00fatiles. En unos pocos a\u00f1os, los servicios secretos podr\u00edan decodificarlos.<\/p>\n<h2>La vulnerabilidad del HTTPS<\/h2>\n<p>\u00bfQu\u00e9 es exactamente el Secreto Perfecto para Adelante, SFP para abreviar? Para explicar el t\u00e9rmino, primero es necesario explicar c\u00f3mo funciona la encriptaci\u00f3n SSL, que se utiliza en los sitios web donde se transfieren datos sensibles.<\/p>\n<p>Al visitar nuestro <a href=\"https:\/\/webhosting.de\/es\/eine-eigene-webseite-fuer-ihr-unternehmen-ja-oder-nein\/\">sitio web<\/a> hoster.online, un peque\u00f1o candado ser\u00e1 visible en la barra de b\u00fasqueda del navegador web. Un clic en el candado abre la informaci\u00f3n sobre el certificado SSL. Con otro clic, puede ver informaci\u00f3n sobre el <a href=\"https:\/\/webhosting.de\/es\/plesk-letsencrypt-zertifikat-erstellen\/\">Certificado<\/a> incluyendo, por ejemplo, la fecha de caducidad.<\/p>\n<p>Los certificados SSL pueden ser utilizados por pr\u00e1cticamente cualquier sitio web. Las diferencias radican en<\/p>\n<p>- su encriptaci\u00f3n...<br \/>\n- si validan el dominio o la identidad y<br \/>\n- lo alta que es su compatibilidad con los navegadores.<\/p>\n<p>Tambi\u00e9n hay tres tipos de certificados:<\/p>\n<p>1er sencillo<br \/>\n2\u00ba comod\u00edn<br \/>\n3. multi-dominio<\/p>\n<p>El certificado SSL funciona de la siguiente manera: El usuario navega a un sitio web, por ejemplo hoster.online. Su navegador se pone en contacto con el servidor, que especifica una clave p\u00fablica emitida por la autoridad de certificaci\u00f3n. El navegador comprueba la firma de la autoridad de certificaci\u00f3n. Si es correcto, intercambia datos con hoster.online. A partir de ahora todos los datos se transmitir\u00e1n encriptados.<\/p>\n<h2>El secreto perfecto como protecci\u00f3n contra los m\u00e9todos del ma\u00f1ana<\/h2>\n<p>Para la transmisi\u00f3n encriptada de una sesi\u00f3n HTTPS, el navegador sugiere una clave de sesi\u00f3n secreta cada vez. El servidor confirma esta clave.<\/p>\n<p>El problema del m\u00e9todo es que los servicios secretos como la NSA pueden registrar la transmisi\u00f3n de la clave. En un futuro previsible, podr\u00eda ser posible desencriptarlo. Esto les permitir\u00eda leer todos los datos transferidos a hoster.online.<\/p>\n<p>En el pasado ha habido problemas con el HTTPS. El virus Heartbleed, que expuso a los sitios web a importantes vulnerabilidades de seguridad desde 2011, afect\u00f3 a dos de cada tres sitios web en Internet. La hemorragia fue un error de programaci\u00f3n en el software OpenSSL. Le dio a los hackers que se conectaban a un servidor con una versi\u00f3n vulnerable de OpenSSL a trav\u00e9s de HTTPs acceso a 64 KB de almacenamiento privado. El ataque caus\u00f3 que los servidores filtraran cookies, contrase\u00f1as y direcciones de correo electr\u00f3nico. Grandes servicios como Yahoo Mail y LastPass fueron afectados.<\/p>\n<p>La soluci\u00f3n para tales escenarios es el secreto perfecto: con el llamado m\u00e9todo Diffie-Hellman, los dos socios de comunicaci\u00f3n - en este caso el navegador y el servidor - se ponen de acuerdo sobre una clave de sesi\u00f3n temporal. Esto no se transmite en ning\u00fan momento. Tan pronto como se cierra la sesi\u00f3n, la llave se destruye.<\/p>\n<h2>PFS en la pr\u00e1ctica y el futuro<\/h2>\n<p>Desafortunadamente, hay dos malas noticias:<\/p>\n<p>1. Pocos sitios web utilizan actualmente el SFP<br \/>\n2. todos los datos intercambiados hasta ahora ya no pueden ser encriptados<\/p>\n<p>No obstante, los sitios web deber\u00edan aplicar, al menos de ahora en adelante, el secreto de avance perfecto para garantizar que, tarde o temprano, no se pueda leer ning\u00fan dato a pesar de la encriptaci\u00f3n.<\/p>\n<p>Ivan Ristic de los Laboratorios de Seguridad recomienda las siguientes suites para implementar el PFS:<\/p>\n<p>- TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA<br \/>\n- TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA<br \/>\n- TLS_ECDHE_RSA_WITH_3THE_EDE_CBC_SHA<\/p>\n<p>Los webmasters pueden probar su sitio web en ssllabs.com y luego decidir las medidas apropiadas.<\/p>\n<p>Despu\u00e9s de la implementaci\u00f3n de Perfetct Forward Secrecy, servicios como la NSA y el BND s\u00f3lo pueden leer datos con ataques de hombre en medio. En todos los dem\u00e1s casos, el FPS ser\u00e1 una espina clavada en el costado de las escuchas.<\/p>","protected":false},"excerpt":{"rendered":"<p>Die Enth\u00fcllungen von Whistleblower Edward Snowden haben gezeigt, dass die NSA Daten massenweise sammelt. Zwar kann sie einen Teil der Informationen heute nicht entschl\u00fcsseln, in Zukunft w\u00e4re dies unter Umst\u00e4nden m\u00f6glich. Webmaster k\u00f6nnen sich und ihre Besucher heute vor einer morgigen Entschl\u00fcsselung sch\u00fctzen. Edward Snowden hat der Welt gezeigt, dass keine Daten vor den Geheimdiensten [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":503,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"_crdt_document":"","inline_featured_image":false,"footnotes":""},"categories":[673,794],"tags":[186,187],"class_list":["post-4181","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-computer_und_internet","category-sicherheit-computer_und_internet","tag-perfect-forward-secrecy","tag-pfs"],"acf":[],"_wp_attached_file":null,"_wp_attachment_metadata":null,"litespeed-optimize-size":null,"litespeed-optimize-set":null,"_elementor_source_image_hash":null,"_wp_attachment_image_alt":null,"stockpack_author_name":null,"stockpack_author_url":null,"stockpack_provider":null,"stockpack_image_url":null,"stockpack_license":null,"stockpack_license_url":null,"stockpack_modification":null,"color":null,"original_id":null,"original_url":null,"original_link":null,"unsplash_location":null,"unsplash_sponsor":null,"unsplash_exif":null,"unsplash_attachment_metadata":null,"_elementor_is_screenshot":null,"surfer_file_name":null,"surfer_file_original_url":null,"envato_tk_source_kit":null,"envato_tk_source_index":null,"envato_tk_manifest":null,"envato_tk_folder_name":null,"envato_tk_builder":null,"envato_elements_download_event":null,"_menu_item_type":null,"_menu_item_menu_item_parent":null,"_menu_item_object_id":null,"_menu_item_object":null,"_menu_item_target":null,"_menu_item_classes":null,"_menu_item_xfn":null,"_menu_item_url":null,"_trp_menu_languages":null,"rank_math_primary_category":null,"rank_math_title":null,"inline_featured_image":null,"_yoast_wpseo_primary_category":null,"rank_math_schema_blogposting":null,"rank_math_schema_videoobject":null,"_oembed_049c719bc4a9f89deaead66a7da9fddc":null,"_oembed_time_049c719bc4a9f89deaead66a7da9fddc":null,"_yoast_wpseo_focuskw":"","_yoast_wpseo_linkdex":null,"_oembed_27e3473bf8bec795fbeb3a9d38489348":null,"_oembed_c3b0f6959478faf92a1f343d8f96b19e":null,"_trp_translated_slug_en_us":null,"_wp_desired_post_slug":null,"_yoast_wpseo_title":null,"tldname":null,"tldpreis":null,"tldrubrik":null,"tldpolicylink":null,"tldsize":null,"tldregistrierungsdauer":null,"tldtransfer":null,"tldwhoisprivacy":null,"tldregistrarchange":null,"tldregistrantchange":null,"tldwhoisupdate":null,"tldnameserverupdate":null,"tlddeletesofort":null,"tlddeleteexpire":null,"tldumlaute":null,"tldrestore":null,"tldsubcategory":null,"tldbildname":null,"tldbildurl":null,"tldclean":null,"tldcategory":null,"tldpolicy":null,"tldbesonderheiten":null,"tld_bedeutung":null,"_oembed_d167040d816d8f94c072940c8009f5f8":null,"_oembed_b0a0fa59ef14f8870da2c63f2027d064":null,"_oembed_4792fa4dfb2a8f09ab950a73b7f313ba":null,"_oembed_33ceb1fe54a8ab775d9410abf699878d":null,"_oembed_fd7014d14d919b45ec004937c0db9335":null,"_oembed_21a029d076783ec3e8042698c351bd7e":null,"_oembed_be5ea8a0c7b18e658f08cc571a909452":null,"_oembed_a9ca7a298b19f9b48ec5914e010294d2":null,"_oembed_f8db6b27d08a2bb1f920e7647808899a":null,"_oembed_168ebde5096e77d8a89326519af9e022":null,"_oembed_cdb76f1b345b42743edfe25481b6f98f":null,"_oembed_87b0613611ae54e86e8864265404b0a1":null,"_oembed_27aa0e5cf3f1bb4bc416a4641a5ac273":null,"_oembed_time_27aa0e5cf3f1bb4bc416a4641a5ac273":null,"_tldname":null,"_tldclean":null,"_tldpreis":null,"_tldcategory":null,"_tldsubcategory":null,"_tldpolicy":null,"_tldpolicylink":null,"_tldsize":null,"_tldregistrierungsdauer":null,"_tldtransfer":null,"_tldwhoisprivacy":null,"_tldregistrarchange":null,"_tldregistrantchange":null,"_tldwhoisupdate":null,"_tldnameserverupdate":null,"_tlddeletesofort":null,"_tlddeleteexpire":null,"_tldumlaute":null,"_tldrestore":null,"_tldbildname":null,"_tldbildurl":null,"_tld_bedeutung":null,"_tldbesonderheiten":null,"_oembed_ad96e4112edb9f8ffa35731d4098bc6b":null,"_oembed_8357e2b8a2575c74ed5978f262a10126":null,"_oembed_3d5fea5103dd0d22ec5d6a33eff7f863":null,"_eael_widget_elements":null,"_oembed_0d8a206f09633e3d62b95a15a4dd0487":null,"_oembed_time_0d8a206f09633e3d62b95a15a4dd0487":null,"_aioseo_description":null,"_eb_attr":null,"_eb_data_table":null,"_oembed_819a879e7da16dd629cfd15a97334c8a":null,"_oembed_time_819a879e7da16dd629cfd15a97334c8a":null,"_acf_changed":null,"_wpcode_auto_insert":null,"_edit_last":null,"_edit_lock":null,"_oembed_e7b913c6c84084ed9702cb4feb012ddd":null,"_oembed_bfde9e10f59a17b85fc8917fa7edf782":null,"_oembed_time_bfde9e10f59a17b85fc8917fa7edf782":null,"_oembed_03514b67990db061d7c4672de26dc514":null,"_oembed_time_03514b67990db061d7c4672de26dc514":null,"rank_math_news_sitemap_robots":"index","rank_math_robots":["index"],"_eael_post_view_count":"4613","_trp_automatically_translated_slug_ru_ru":null,"_trp_automatically_translated_slug_et":"perfect-forward-secrecy-future-proof-encryption-for-websites","_trp_automatically_translated_slug_lv":"perfekts-forward-secrecy-forward-forward-secrecy-future-proof-encryption-for-websites","_trp_automatically_translated_slug_fr_fr":null,"_trp_automatically_translated_slug_en_us":null,"_wp_old_slug":null,"_trp_automatically_translated_slug_da_dk":null,"_trp_automatically_translated_slug_pl_pl":null,"_trp_automatically_translated_slug_es_es":null,"_trp_automatically_translated_slug_hu_hu":null,"_trp_automatically_translated_slug_fi":"taeydellinen-ennakointisalaisuus-tulevaisuuden-varma-salaus-verkkosivustoille","_trp_automatically_translated_slug_ja":"%e3%82%a6%e3%82%a7%e3%83%96%e3%82%b5%e3%82%a4%e3%83%88%e3%81%ae%e3%81%9f%e3%82%81%e3%81%ae%e5%ae%8c%e5%85%a8%e3%81%aa%e5%89%8d%e6%96%b9%e7%a7%98%e5%af%86%e6%9c%aa%e6%9d%a5%e3%81%ae%e5%ae%89%e5%85%a8","_trp_automatically_translated_slug_lt_lt":null,"_elementor_edit_mode":null,"_elementor_template_type":null,"_elementor_version":null,"_elementor_pro_version":null,"_wp_page_template":"default","_elementor_page_settings":null,"_elementor_data":null,"_elementor_css":null,"_elementor_conditions":null,"_happyaddons_elements_cache":null,"_oembed_75446120c39305f0da0ccd147f6de9cb":null,"_oembed_time_75446120c39305f0da0ccd147f6de9cb":null,"_oembed_3efb2c3e76a18143e7207993a2a6939a":null,"_oembed_time_3efb2c3e76a18143e7207993a2a6939a":null,"_oembed_59808117857ddf57e478a31d79f76e4d":null,"_oembed_time_59808117857ddf57e478a31d79f76e4d":null,"_oembed_965c5b49aa8d22ce37dfb3bde0268600":null,"_oembed_time_965c5b49aa8d22ce37dfb3bde0268600":null,"_oembed_81002f7ee3604f645db4ebcfd1912acf":null,"_oembed_time_81002f7ee3604f645db4ebcfd1912acf":null,"_elementor_screenshot":null,"_oembed_7ea3429961cf98fa85da9747683af827":null,"_oembed_time_7ea3429961cf98fa85da9747683af827":null,"_elementor_controls_usage":null,"_elementor_page_assets":[],"_elementor_screenshot_failed":null,"theplus_transient_widgets":["tp-video-player"],"_eael_custom_js":null,"_wp_old_date":null,"_trp_automatically_translated_slug_it_it":null,"_trp_automatically_translated_slug_pt_pt":null,"_trp_automatically_translated_slug_zh_cn":null,"_trp_automatically_translated_slug_nl_nl":null,"_trp_automatically_translated_slug_pt_br":null,"_trp_automatically_translated_slug_sv_se":null,"rank_math_analytic_object_id":"1021","rank_math_internal_links_processed":null,"_trp_automatically_translated_slug_ro_ro":null,"_trp_automatically_translated_slug_sk_sk":null,"_trp_automatically_translated_slug_bg_bg":null,"_trp_automatically_translated_slug_sl_si":null,"litespeed_vpi_list":["webhostinglogo.png"],"litespeed_vpi_list_mobile":["webhostinglogo.png"],"rank_math_seo_score":null,"rank_math_contentai_score":null,"ilj_limitincominglinks":null,"ilj_maxincominglinks":null,"ilj_limitoutgoinglinks":null,"ilj_maxoutgoinglinks":null,"ilj_limitlinksperparagraph":null,"ilj_linksperparagraph":null,"ilj_blacklistdefinition":null,"ilj_linkdefinition":["perfect forward secrecy: zukunftssichere verschl\u00fcsselung f\u00fcr webseiten"],"_eb_reusable_block_ids":[],"rank_math_focus_keyword":null,"rank_math_og_content_image":null,"_yoast_wpseo_metadesc":"","_yoast_wpseo_content_score":null,"_yoast_wpseo_focuskeywords":null,"_yoast_wpseo_keywordsynonyms":null,"_yoast_wpseo_estimated-reading-time-minutes":null,"rank_math_description":null,"surfer_last_post_update":null,"surfer_last_post_update_direction":null,"surfer_keywords":null,"surfer_location":null,"surfer_draft_id":null,"surfer_permalink_hash":null,"surfer_scrape_ready":null,"_thumbnail_id":"503","footnotes":null,"_links":{"self":[{"href":"https:\/\/webhosting.de\/es\/wp-json\/wp\/v2\/posts\/4181","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/webhosting.de\/es\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/webhosting.de\/es\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/webhosting.de\/es\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/webhosting.de\/es\/wp-json\/wp\/v2\/comments?post=4181"}],"version-history":[{"count":0,"href":"https:\/\/webhosting.de\/es\/wp-json\/wp\/v2\/posts\/4181\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/webhosting.de\/es\/wp-json\/wp\/v2\/media\/503"}],"wp:attachment":[{"href":"https:\/\/webhosting.de\/es\/wp-json\/wp\/v2\/media?parent=4181"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/webhosting.de\/es\/wp-json\/wp\/v2\/categories?post=4181"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/webhosting.de\/es\/wp-json\/wp\/v2\/tags?post=4181"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}