* what does TLS offer?
   * transparent secure channel
      * encryption
      * authentication
      * compression

* record protocol
   * basic structure of a TLS record

* handshake
   * basic case
   * session resumption
   * client authentication
   * ephemeral keys

wireshark and TLS
   * requires gnutls and libgcrypt
   * "decode as" when TLS uses non-standard ports
   * time shift to see the delay between requests and response
   * reassembly on the TCP and on the application layer
   * ASN.1 parser for X.509 certificates
      * example for custom extension

security
   * cipher suites
   * forward secrecy
   * some basic attacks

some remarks about performance

decrypting TLS traffic with Wireshark
   * using the server's private key
   * using the premaster secret
   * how to handle protocols that start in the clear and switch to TLS later
   * some examples, mostly using openssl s_server on the server side
   * export PDU mechanism to save the decrypted traffic in the clear

summary
   * the basic ideas of SSL/TLS are simple to understand - it's hard to
     get the details right
   * Wireshark's TLS support is fairly good but there's still
     things to improve