Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 



Forgot your password?
typodupeerror
Mozilla

Submission + - Firefox 4 to Force HTTPS Connections->

Trailrunner7 writes: In an effort to help mitigate man-in-the-middle attacks that make normal HTTP connections look like secured HTTPS sessions, Mozilla is adding support in Firefox 4 for a new technology called HTTP Strict Transport Security that enables site operators to tell browsers to always request an HTTPS session on future visits.

The technology, which is also known as ForceTLS, is currently an IETF draft specification and Mozilla officials say it should give users more confidence in HTTPS connections over time. Right now, the existence of HTTPS in front of a URL in a browser's address bar is nothing close to a guarantee that the connection is actually a secure one. There are myriad man-in-the-middle attack scenarios that introduce a high level of uncertainty for SSL connections.

Link to Original Source
This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

Firefox 4 to Force HTTPS Connections

Comments Filter:

Fear is the greatest salesman. -- Robert Klein

Working...