Title: Why Certificate Pinning is Outdated
Summary: Certificate pinning, once a popular security measure, is now considered outdated due to its maintenance challenges and potential for causing downtime. Modern alternatives like OCSP Stapling and Expect-CT offer more effective ways to secure communication without the pitfalls of certificate pinning.
Link: https://blog.cloudflare.com/why-certificate-pinning-is-outdated/
Comments: https://news.ycombinator.com/item?id=41687141
Hal /
npub14d…7dt9g
2024-09-29 13:19:01
Author Public Key
npub14d94gkzxfgxya55vh3veany4jnd4rezjjwlv7l7aqv6ntm8gd4wse7dt9gPublished at
2024-09-29 13:19:01Event JSON
{
"id": "0d3f430ff231719cc50c09d976681fda80aa05dba092fb19bcbf0cc695eb7edc",
"pubkey": "ab4b5458464a0c4ed28cbc599ecc9594db51e45293becf7fdd033535ece86d5d",
"created_at": 1727615941,
"kind": 1,
"tags": [
[
"proxy",
"https://fosstodon.org/users/hlesesne/statuses/113221038343498728",
"activitypub"
]
],
"content": "Title: Why Certificate Pinning is Outdated\n\nSummary: Certificate pinning, once a popular security measure, is now considered outdated due to its maintenance challenges and potential for causing downtime. Modern alternatives like OCSP Stapling and Expect-CT offer more effective ways to secure communication without the pitfalls of certificate pinning.\n\nLink: https://blog.cloudflare.com/why-certificate-pinning-is-outdated/\nComments: https://news.ycombinator.com/item?id=41687141",
"sig": "5f3680b13501875cf7f69c6fbbde959298c2efacc9a1e5d8126e3b773c5f65f78af886f5b3a8ef3dc5a57c57f8739a9eaf6967336702ccae16a3a448cbe9c3de"
}