Public-Key-Pins-Disabled/EN/Description: Unterschied zwischen den Versionen
| (Eine dazwischenliegende Version desselben Benutzers wird nicht angezeigt) | |||
| Zeile 1: | Zeile 1: | ||
| − | Powerful attackers, such as intelligence agencies, can create a signature with the help of a certification agency that is accepted by users. To prevent this, a website can be configured so that the [[Certificate | + | Powerful attackers, such as intelligence agencies, can create a signature with the help of a certification agency that is accepted by users. To prevent this, a website can be configured so that the [[Certificate|certificate]] must be saved permanently (pinning) when it is called up for the first time. If [https://en.wikipedia.org/wiki/HTTP_Public_Key_Pinning Key Pinning] is used, only the saved certificate will be accepted for the period of time specified by the website. |
Aktuelle Version vom 15. März 2019, 15:46 Uhr
Powerful attackers, such as intelligence agencies, can create a signature with the help of a certification agency that is accepted by users. To prevent this, a website can be configured so that the certificate must be saved permanently (pinning) when it is called up for the first time. If Key Pinning is used, only the saved certificate will be accepted for the period of time specified by the website.
