aboutsummaryrefslogtreecommitdiff
path: root/cool.mdwn
diff options
context:
space:
mode:
Diffstat (limited to 'cool.mdwn')
-rw-r--r--cool.mdwn4
1 files changed, 2 insertions, 2 deletions
diff --git a/cool.mdwn b/cool.mdwn
index 88fbc8a..04bfd99 100644
--- a/cool.mdwn
+++ b/cool.mdwn
@@ -62,7 +62,6 @@ SSL
===
- Encapsulamento de outros protocolos
-- HTTP Strict Transport Security - HSTS
- CipherSuite e Perfect Forward Secrecy
- Revogação (CRL / OCSP)
- Autoridades Certificadoras (CAs)
@@ -236,7 +235,8 @@ Mitigação
Recentemente foram propostas várias formas de mitigação:
-- [Certificate Patrol](https://addons.mozilla.org/pt-BR/firefox/addon/certificate-patrol/?src=search): muito útil porém sofre to problema de "bootstrapping"/secure introduction (Trust On First Use/Persistence of Pseudonym - TOFU/POP).
+- [HTTP Strict Transport Security - HSTS](https://en.wikipedia.org/wiki/HTTP_Strict_Transport_Security)
+- [Certificate Patrol](https://addons.mozilla.org/pt-BR/firefox/addon/certificate-patrol/?src=search): muito útil porém sofre to problema de secure introduction (Trust On First Use/Persistence of Pseudonym - TOFU/POP).
- [Certlock](https://code.google.com/p/certlock/)
- IETF:
- [Public Key Pinning Extension for HTTP](https://www.ietf.org/id/draft-evans-palmer-key-pinning-00.txt): também sofre do "problema de bootstrapping".
generated by cgit v1.2.3 (git 2.39.1) at 2024-05-04 13:27:37 +0000