Reply to post: Lack of support for HTTP Strict Transport Security

El Reg assesses crypto of UK banks: Who gets to wear the dunce cap?

Walter Bishop Silver badge
Terminator

Lack of support for HTTP Strict Transport Security

"The most important security vulnerability that HSTS can fix is SSL-stripping man-in-the-middle attacks .. The user can see that the connection is insecure, but crucially there is no way of knowing whether the connection should be secure"

"HTTPS Everywhere .. will protect you against many forms of surveillance and account hijacking, and some forms of censorship."

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2019