diff options
author | Silvio <silvio@fluxo.info> | 2011-12-04 13:05:33 -0200 |
---|---|---|
committer | Silvio <silvio@fluxo.info> | 2011-12-04 13:05:33 -0200 |
commit | 65587744d7ab2a26e328fedc699b86a06ffc2d79 (patch) | |
tree | 45500754fe2d7f161146132db784f6f3aa0cfc51 | |
parent | a7712972612f0af7e4e563676a22a390bdd41b15 (diff) | |
download | gestaossl-65587744d7ab2a26e328fedc699b86a06ffc2d79.tar.gz gestaossl-65587744d7ab2a26e328fedc699b86a06ffc2d79.tar.bz2 |
Fixes
-rw-r--r-- | cool.mdwn | 4 |
1 files changed, 2 insertions, 2 deletions
@@ -62,7 +62,6 @@ SSL === - Encapsulamento de outros protocolos -- HTTP Strict Transport Security - HSTS - CipherSuite e Perfect Forward Secrecy - Revogação (CRL / OCSP) - Autoridades Certificadoras (CAs) @@ -236,7 +235,8 @@ Mitigação Recentemente foram propostas várias formas de mitigação: -- [Certificate Patrol](https://addons.mozilla.org/pt-BR/firefox/addon/certificate-patrol/?src=search): muito útil porém sofre to problema de "bootstrapping"/secure introduction (Trust On First Use/Persistence of Pseudonym - TOFU/POP). +- [HTTP Strict Transport Security - HSTS](https://en.wikipedia.org/wiki/HTTP_Strict_Transport_Security) +- [Certificate Patrol](https://addons.mozilla.org/pt-BR/firefox/addon/certificate-patrol/?src=search): muito útil porém sofre to problema de secure introduction (Trust On First Use/Persistence of Pseudonym - TOFU/POP). - [Certlock](https://code.google.com/p/certlock/) - IETF: - [Public Key Pinning Extension for HTTP](https://www.ietf.org/id/draft-evans-palmer-key-pinning-00.txt): também sofre do "problema de bootstrapping". |