Confirmed users
238
edits
SecurityEngineering/Public Key Pinning: Difference between revisions
Jump to navigation
Jump to search
SecurityEngineering/Public Key Pinning (view source)
Revision as of 18:06, 2 August 2014
, 2 August 2014→How to use pinning
No edit summary |
|||
| Line 34: | Line 34: | ||
Starting with FF 32, it's on by default, so you don't have to do anything. The pinning level is enforced by a pref, security.cert_pinning.enforcement_level | Starting with FF 32, it's on by default, so you don't have to do anything. The pinning level is enforced by a pref, security.cert_pinning.enforcement_level | ||
0. Pinning disabled | * 0. Pinning disabled | ||
1. Allow User MITM (pinning not enforced if the trust anchor is a user inserted CA, default) | * 1. Allow User MITM (pinning not enforced if the trust anchor is a user inserted CA, default) | ||
2. Strict. Pinning is always enforced. | * 2. Strict. Pinning is always enforced. | ||
3. Enforce test mode. | * 3. Enforce test mode. | ||
== More information == | == More information == | ||