HTTP Public-Key-Pins Header

By: Dusty Arlia
Published on Thursday, June 19, 2014, 07:19 PM
Last Updated on Saturday, July 11, 2015 at 3:01 PM
Total Updates: 2

The Public-Key-Pins HTTP header helps prevent man-in-the-middle attacks by announcing the hash of the website's authentic TLS certificate. Here is an example:

Public-Key-Pins: max-age=2592000; pin-sha256="E9CZ9INDbd+2eRQozYqqbQ2yXLVKB9+xcprMF+44U1g=";

Comments:

Ad:

Ad: