Posted in Information Technology, Security

HTTPS Cheat Sheet

Mitigations

Perfect Forward Secrecy (PFS)

Public Key Pinning (HPKP)

  • HPKP – HTTP Public Key Pinning: Headers look like
    Public-Key-Pins-Report-Only
    
    Public-Key-Pins pin-<algorithm>="<hash>"; pin-<algorithm>="<hash>"; max-age=<age>[; includeSubdomains]
    
  • Creating SPKI fingerprints
    openssl x509 -noout -in certificate.pem -pubkey | \
    openssl asn1parse -noout -inform pem -out public.key;
    openssl dgst -sha256 -binary public.key | openssl enc -base64
    

OSCP

HTTPS Testing

SSL Performance

 

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s