Confirmed users
529
edits
Security/Server Side TLS: Difference between revisions
→HPKP: Public Key Pinning Extension for HTTP
(→Apache) |
|||
| Line 250: | Line 250: | ||
= HPKP: Public Key Pinning Extension for HTTP = | = HPKP: Public Key Pinning Extension for HTTP = | ||
See [[http://tools.ietf.org/html/rfc7469 RFC7469]]. | |||
HPKP is an '''experimental''' HTTP header sent by a server to a client, to indicate that some certificates related to the site should be pinned in the client. The client would thus refuse to establish a connection to the server if the pining does not comply. | HPKP is an '''experimental''' HTTP header sent by a server to a client, to indicate that some certificates related to the site should be pinned in the client. The client would thus refuse to establish a connection to the server if the pining does not comply. | ||