{"id":4181,"date":"2020-10-30T20:17:36","date_gmt":"2020-10-30T19:17:36","guid":{"rendered":"https:\/\/webhosting.de\/perfect-forward-secrecy-zukunftssichere-verschluesselung-fuer-webseiten\/"},"modified":"2020-10-30T20:17:36","modified_gmt":"2020-10-30T19:17:36","slug":"websites-com-encriptacao-de-seguranca-futuro-futuro-futuro-futuro-futuro-futuro-futuro-futuro","status":"publish","type":"post","link":"https:\/\/webhosting.de\/pt\/perfect-forward-secrecy-zukunftssichere-verschluesselung-fuer-webseiten\/","title":{"rendered":"Perfect Forward Secrecy: encripta\u00e7\u00e3o \u00e0 prova de futuro para websites"},"content":{"rendered":"<p>As revela\u00e7\u00f5es do denunciante Edward Snowden mostraram que a NSA <a href=\"https:\/\/webhosting.de\/pt\/personenbezogene-daten-sozialen-netzwerken\/\">Dados<\/a> em massa. Embora n\u00e3o possa decifrar parte da informa\u00e7\u00e3o hoje, pode ser poss\u00edvel no futuro. Os webmasters podem proteger-se a si pr\u00f3prios e aos seus visitantes de hoje da desencripta\u00e7\u00e3o de amanh\u00e3.<\/p>\n<p>Edward Snowden mostrou ao mundo que nenhum dado est\u00e1 a salvo dos servi\u00e7os secretos. Eles recolhem (como precau\u00e7\u00e3o) todas as informa\u00e7\u00f5es que lhes chegam. Alguns destes dados s\u00e3o criptografados, por exemplo, atrav\u00e9s de uma conex\u00e3o HTTPS. Isto inclui sites onde s\u00e3o transmitidos dados sens\u00edveis, a compra de um produto ou o login em uma conta de e-mail ou usando o home banking. Todos estes dados s\u00e3o interceptados, embora hoje em dia sejam in\u00fateis. Em alguns anos, os servi\u00e7os secretos poderiam descodific\u00e1-los.<\/p>\n<h2>A vulnerabilidade do HTTPS<\/h2>\n<p>O que \u00e9 exactamente Perfect Forward Secrecy, PFS, para abreviar? Para explicar o termo, \u00e9 necess\u00e1rio primeiro explicar como funciona a encripta\u00e7\u00e3o SSL, que \u00e9 utilizada em sites onde os dados sens\u00edveis s\u00e3o transferidos.<\/p>\n<p>Ao visitar o nosso <a href=\"https:\/\/webhosting.de\/pt\/eine-eigene-webseite-fuer-ihr-unternehmen-ja-oder-nein\/\">website<\/a> hoster.online, um pequeno cadeado ser\u00e1 vis\u00edvel na barra de pesquisa do navegador da web. Um clique no cadeado abre informa\u00e7\u00f5es sobre o certificado SSL. Com outro clique, pode visualizar informa\u00e7\u00f5es sobre o <a href=\"https:\/\/webhosting.de\/pt\/plesk-letsencrypt-zertifikat-erstellen\/\">Certificado<\/a> incluindo, por exemplo, a data de expira\u00e7\u00e3o.<\/p>\n<p>Os certificados SSL podem ser usados por praticamente qualquer website. As diferen\u00e7as est\u00e3o em<\/p>\n<p>- sua encripta\u00e7\u00e3o<br \/>\n- se eles validam o dom\u00ednio ou a identidade e<br \/>\n- o qu\u00e3o alta \u00e9 a compatibilidade do navegador deles.<\/p>\n<p>Existem tamb\u00e9m tr\u00eas tipos de certificados:<\/p>\n<p>1\u00ba single<br \/>\n2\u00ba asterisco<br \/>\n3. multi-dom\u00ednio<\/p>\n<p>O certificado SSL funciona da seguinte forma: O usu\u00e1rio navega para um site, por exemplo, hoster.online. O seu navegador contacta o servidor, o que especifica uma chave p\u00fablica emitida pela autoridade de certifica\u00e7\u00e3o. O navegador verifica a assinatura da autoridade de certifica\u00e7\u00e3o. Se estiver correto, ele troca dados com o hoster.online. A partir de agora, todos os dados ser\u00e3o transmitidos encriptados.<\/p>\n<h2>Perfect Forward Secrecy como prote\u00e7\u00e3o contra os m\u00e9todos de amanh\u00e3<\/h2>\n<p>Para a transmiss\u00e3o encriptada de uma sess\u00e3o HTTPS, o navegador sugere uma chave de sess\u00e3o secreta cada vez. O servidor confirma esta chave.<\/p>\n<p>O problema com o m\u00e9todo \u00e9 que servi\u00e7os secretos como o NSA podem gravar a transmiss\u00e3o da chave. Num futuro previs\u00edvel, poder\u00e1 ser poss\u00edvel decifr\u00e1-lo. Isto permitir-lhes-ia ler todos os dados transferidos para o hoster.online.<\/p>\n<p>No passado, houve problemas com HTTPS. O bug Heartbleed, que exp\u00f4s os sites a grandes vulnerabilidades de seguran\u00e7a desde 2011, afetou dois dos tr\u00eas sites na Internet. Heartbleed foi um erro de programa\u00e7\u00e3o no software OpenSSL. Ele deu aos hackers conectados a um servidor com uma vers\u00e3o vulner\u00e1vel do OpenSSL via HTTPs acesso a 64 KB de armazenamento privado. O ataque fez com que os servidores vazassem cookies, senhas e endere\u00e7os de e-mail. Grandes servi\u00e7os como o Yahoo Mail e o LastPass foram afetados.<\/p>\n<p>A solu\u00e7\u00e3o para tais cen\u00e1rios \u00e9 Perfect Forward Secrecy: Com o chamado m\u00e9todo Diffie-Hellman, os dois parceiros de comunica\u00e7\u00e3o - neste caso, navegador e servidor - concordam em uma chave de sess\u00e3o tempor\u00e1ria. Isto n\u00e3o \u00e9 transmitido em nenhum momento. Assim que a sess\u00e3o \u00e9 encerrada, a chave \u00e9 destru\u00edda.<\/p>\n<h2>PFS na pr\u00e1tica e o futuro<\/h2>\n<p>Infelizmente, h\u00e1 duas m\u00e1s not\u00edcias:<\/p>\n<p>1. poucos sites utilizam actualmente PFS<br \/>\n2. Todos os dados trocados at\u00e9 agora n\u00e3o podem mais ser criptografados.<\/p>\n<p>No entanto, os sites devem pelo menos a partir de agora implementar o Perfect Forward Secrecy para garantir que nenhum dado possa ser lido mais cedo ou mais tarde, apesar da encripta\u00e7\u00e3o.<\/p>\n<p>Ivan Ristic do Security Labs recomenda as seguintes su\u00edtes para a implementa\u00e7\u00e3o do PFS:<\/p>\n<p>- TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA<br \/>\n- TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA<br \/>\n- TLS_ECDHE_RSA_WITH_3THE_EDE_CBC_SHA<\/p>\n<p>Os webmasters podem testar seu site no ssllabs.com e depois decidir sobre as medidas apropriadas.<\/p>\n<p>Ap\u00f3s a implementa\u00e7\u00e3o do Perfetct Forward Secrecy, servi\u00e7os como NSA e BND s\u00f3 podem ler dados com ataques \"man-in-the-middle\". Em todos os outros casos, o FPS ser\u00e1 um grande espinho na lateral dos espi\u00f5es.<\/p>","protected":false},"excerpt":{"rendered":"<p>Die Enth\u00fcllungen von Whistleblower Edward Snowden haben gezeigt, dass die NSA Daten massenweise sammelt. Zwar kann sie einen Teil der Informationen heute nicht entschl\u00fcsseln, in Zukunft w\u00e4re dies unter Umst\u00e4nden m\u00f6glich. Webmaster k\u00f6nnen sich und ihre Besucher heute vor einer morgigen Entschl\u00fcsselung sch\u00fctzen. Edward Snowden hat der Welt gezeigt, dass keine Daten vor den Geheimdiensten [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":503,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"_crdt_document":"","inline_featured_image":false,"footnotes":""},"categories":[673,794],"tags":[186,187],"class_list":["post-4181","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-computer_und_internet","category-sicherheit-computer_und_internet","tag-perfect-forward-secrecy","tag-pfs"],"acf":[],"_wp_attached_file":null,"_wp_attachment_metadata":null,"litespeed-optimize-size":null,"litespeed-optimize-set":null,"_elementor_source_image_hash":null,"_wp_attachment_image_alt":null,"stockpack_author_name":null,"stockpack_author_url":null,"stockpack_provider":null,"stockpack_image_url":null,"stockpack_license":null,"stockpack_license_url":null,"stockpack_modification":null,"color":null,"original_id":null,"original_url":null,"original_link":null,"unsplash_location":null,"unsplash_sponsor":null,"unsplash_exif":null,"unsplash_attachment_metadata":null,"_elementor_is_screenshot":null,"surfer_file_name":null,"surfer_file_original_url":null,"envato_tk_source_kit":null,"envato_tk_source_index":null,"envato_tk_manifest":null,"envato_tk_folder_name":null,"envato_tk_builder":null,"envato_elements_download_event":null,"_menu_item_type":null,"_menu_item_menu_item_parent":null,"_menu_item_object_id":null,"_menu_item_object":null,"_menu_item_target":null,"_menu_item_classes":null,"_menu_item_xfn":null,"_menu_item_url":null,"_trp_menu_languages":null,"rank_math_primary_category":null,"rank_math_title":null,"inline_featured_image":null,"_yoast_wpseo_primary_category":null,"rank_math_schema_blogposting":null,"rank_math_schema_videoobject":null,"_oembed_049c719bc4a9f89deaead66a7da9fddc":null,"_oembed_time_049c719bc4a9f89deaead66a7da9fddc":null,"_yoast_wpseo_focuskw":"","_yoast_wpseo_linkdex":null,"_oembed_27e3473bf8bec795fbeb3a9d38489348":null,"_oembed_c3b0f6959478faf92a1f343d8f96b19e":null,"_trp_translated_slug_en_us":null,"_wp_desired_post_slug":null,"_yoast_wpseo_title":null,"tldname":null,"tldpreis":null,"tldrubrik":null,"tldpolicylink":null,"tldsize":null,"tldregistrierungsdauer":null,"tldtransfer":null,"tldwhoisprivacy":null,"tldregistrarchange":null,"tldregistrantchange":null,"tldwhoisupdate":null,"tldnameserverupdate":null,"tlddeletesofort":null,"tlddeleteexpire":null,"tldumlaute":null,"tldrestore":null,"tldsubcategory":null,"tldbildname":null,"tldbildurl":null,"tldclean":null,"tldcategory":null,"tldpolicy":null,"tldbesonderheiten":null,"tld_bedeutung":null,"_oembed_d167040d816d8f94c072940c8009f5f8":null,"_oembed_b0a0fa59ef14f8870da2c63f2027d064":null,"_oembed_4792fa4dfb2a8f09ab950a73b7f313ba":null,"_oembed_33ceb1fe54a8ab775d9410abf699878d":null,"_oembed_fd7014d14d919b45ec004937c0db9335":null,"_oembed_21a029d076783ec3e8042698c351bd7e":null,"_oembed_be5ea8a0c7b18e658f08cc571a909452":null,"_oembed_a9ca7a298b19f9b48ec5914e010294d2":null,"_oembed_f8db6b27d08a2bb1f920e7647808899a":null,"_oembed_168ebde5096e77d8a89326519af9e022":null,"_oembed_cdb76f1b345b42743edfe25481b6f98f":null,"_oembed_87b0613611ae54e86e8864265404b0a1":null,"_oembed_27aa0e5cf3f1bb4bc416a4641a5ac273":null,"_oembed_time_27aa0e5cf3f1bb4bc416a4641a5ac273":null,"_tldname":null,"_tldclean":null,"_tldpreis":null,"_tldcategory":null,"_tldsubcategory":null,"_tldpolicy":null,"_tldpolicylink":null,"_tldsize":null,"_tldregistrierungsdauer":null,"_tldtransfer":null,"_tldwhoisprivacy":null,"_tldregistrarchange":null,"_tldregistrantchange":null,"_tldwhoisupdate":null,"_tldnameserverupdate":null,"_tlddeletesofort":null,"_tlddeleteexpire":null,"_tldumlaute":null,"_tldrestore":null,"_tldbildname":null,"_tldbildurl":null,"_tld_bedeutung":null,"_tldbesonderheiten":null,"_oembed_ad96e4112edb9f8ffa35731d4098bc6b":null,"_oembed_8357e2b8a2575c74ed5978f262a10126":null,"_oembed_3d5fea5103dd0d22ec5d6a33eff7f863":null,"_eael_widget_elements":null,"_oembed_0d8a206f09633e3d62b95a15a4dd0487":null,"_oembed_time_0d8a206f09633e3d62b95a15a4dd0487":null,"_aioseo_description":null,"_eb_attr":null,"_eb_data_table":null,"_oembed_819a879e7da16dd629cfd15a97334c8a":null,"_oembed_time_819a879e7da16dd629cfd15a97334c8a":null,"_acf_changed":null,"_wpcode_auto_insert":null,"_edit_last":null,"_edit_lock":null,"_oembed_e7b913c6c84084ed9702cb4feb012ddd":null,"_oembed_bfde9e10f59a17b85fc8917fa7edf782":null,"_oembed_time_bfde9e10f59a17b85fc8917fa7edf782":null,"_oembed_03514b67990db061d7c4672de26dc514":null,"_oembed_time_03514b67990db061d7c4672de26dc514":null,"rank_math_news_sitemap_robots":"index","rank_math_robots":["index"],"_eael_post_view_count":"4613","_trp_automatically_translated_slug_ru_ru":null,"_trp_automatically_translated_slug_et":"perfect-forward-secrecy-future-proof-encryption-for-websites","_trp_automatically_translated_slug_lv":"perfekts-forward-secrecy-forward-forward-secrecy-future-proof-encryption-for-websites","_trp_automatically_translated_slug_fr_fr":null,"_trp_automatically_translated_slug_en_us":null,"_wp_old_slug":null,"_trp_automatically_translated_slug_da_dk":null,"_trp_automatically_translated_slug_pl_pl":null,"_trp_automatically_translated_slug_es_es":null,"_trp_automatically_translated_slug_hu_hu":null,"_trp_automatically_translated_slug_fi":"taeydellinen-ennakointisalaisuus-tulevaisuuden-varma-salaus-verkkosivustoille","_trp_automatically_translated_slug_ja":"%e3%82%a6%e3%82%a7%e3%83%96%e3%82%b5%e3%82%a4%e3%83%88%e3%81%ae%e3%81%9f%e3%82%81%e3%81%ae%e5%ae%8c%e5%85%a8%e3%81%aa%e5%89%8d%e6%96%b9%e7%a7%98%e5%af%86%e6%9c%aa%e6%9d%a5%e3%81%ae%e5%ae%89%e5%85%a8","_trp_automatically_translated_slug_lt_lt":null,"_elementor_edit_mode":null,"_elementor_template_type":null,"_elementor_version":null,"_elementor_pro_version":null,"_wp_page_template":"default","_elementor_page_settings":null,"_elementor_data":null,"_elementor_css":null,"_elementor_conditions":null,"_happyaddons_elements_cache":null,"_oembed_75446120c39305f0da0ccd147f6de9cb":null,"_oembed_time_75446120c39305f0da0ccd147f6de9cb":null,"_oembed_3efb2c3e76a18143e7207993a2a6939a":null,"_oembed_time_3efb2c3e76a18143e7207993a2a6939a":null,"_oembed_59808117857ddf57e478a31d79f76e4d":null,"_oembed_time_59808117857ddf57e478a31d79f76e4d":null,"_oembed_965c5b49aa8d22ce37dfb3bde0268600":null,"_oembed_time_965c5b49aa8d22ce37dfb3bde0268600":null,"_oembed_81002f7ee3604f645db4ebcfd1912acf":null,"_oembed_time_81002f7ee3604f645db4ebcfd1912acf":null,"_elementor_screenshot":null,"_oembed_7ea3429961cf98fa85da9747683af827":null,"_oembed_time_7ea3429961cf98fa85da9747683af827":null,"_elementor_controls_usage":null,"_elementor_page_assets":[],"_elementor_screenshot_failed":null,"theplus_transient_widgets":["tp-video-player"],"_eael_custom_js":null,"_wp_old_date":null,"_trp_automatically_translated_slug_it_it":null,"_trp_automatically_translated_slug_pt_pt":null,"_trp_automatically_translated_slug_zh_cn":null,"_trp_automatically_translated_slug_nl_nl":null,"_trp_automatically_translated_slug_pt_br":null,"_trp_automatically_translated_slug_sv_se":null,"rank_math_analytic_object_id":"1021","rank_math_internal_links_processed":null,"_trp_automatically_translated_slug_ro_ro":null,"_trp_automatically_translated_slug_sk_sk":null,"_trp_automatically_translated_slug_bg_bg":null,"_trp_automatically_translated_slug_sl_si":null,"litespeed_vpi_list":["webhostinglogo.png"],"litespeed_vpi_list_mobile":["webhostinglogo.png"],"rank_math_seo_score":null,"rank_math_contentai_score":null,"ilj_limitincominglinks":null,"ilj_maxincominglinks":null,"ilj_limitoutgoinglinks":null,"ilj_maxoutgoinglinks":null,"ilj_limitlinksperparagraph":null,"ilj_linksperparagraph":null,"ilj_blacklistdefinition":null,"ilj_linkdefinition":["perfect forward secrecy: zukunftssichere verschl\u00fcsselung f\u00fcr webseiten"],"_eb_reusable_block_ids":[],"rank_math_focus_keyword":null,"rank_math_og_content_image":null,"_yoast_wpseo_metadesc":"","_yoast_wpseo_content_score":null,"_yoast_wpseo_focuskeywords":null,"_yoast_wpseo_keywordsynonyms":null,"_yoast_wpseo_estimated-reading-time-minutes":null,"rank_math_description":null,"surfer_last_post_update":null,"surfer_last_post_update_direction":null,"surfer_keywords":null,"surfer_location":null,"surfer_draft_id":null,"surfer_permalink_hash":null,"surfer_scrape_ready":null,"_thumbnail_id":"503","footnotes":null,"_links":{"self":[{"href":"https:\/\/webhosting.de\/pt\/wp-json\/wp\/v2\/posts\/4181","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/webhosting.de\/pt\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/webhosting.de\/pt\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/webhosting.de\/pt\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/webhosting.de\/pt\/wp-json\/wp\/v2\/comments?post=4181"}],"version-history":[{"count":0,"href":"https:\/\/webhosting.de\/pt\/wp-json\/wp\/v2\/posts\/4181\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/webhosting.de\/pt\/wp-json\/wp\/v2\/media\/503"}],"wp:attachment":[{"href":"https:\/\/webhosting.de\/pt\/wp-json\/wp\/v2\/media?parent=4181"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/webhosting.de\/pt\/wp-json\/wp\/v2\/categories?post=4181"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/webhosting.de\/pt\/wp-json\/wp\/v2\/tags?post=4181"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}