Add to Favorites | Login | Register
Network Security Internet Technology Development Database Servers Mobile Phone Android Software Apple Software Computer Software News IT Information

In addition to Weibo, there is also WeChat

Please pay attention

WeChat public account

Shulou

About us Contact us

The new Mozilla feature only supports https websites.

2025-01-19 Update From: SLTechnology News&Howtos shulou NAV: SLTechnology News&Howtos > Network Security >

Share

Shulou(Shulou.com)06/01 Report--

Mozilla's official blog officially announced the plan to phase out HTTP on April 30, 2015.

These include: set a date and all new features will be available only to HTTPS sites; HTTP sites will gradually be banned from accessing browser features, especially those related to user security and privacy. Mozilla's move is to send a message to the Web developer community that they need to ensure the security of the website, and only when the entire Web community and browser developers work together to eliminate HTTP can it be realized.

Mozilla plans to submit relevant proposals to the W3C WebAppSec working Group shortly.

There are also different views on this strategy, which can be summed up as follows:

1. SSL certificates cost money

2. No encryption is required to disclose non-sensitive content

3. Encryption will slow down the speed of the website and degrade the performance

4. The SSL certificate itself is not impeccable (for example, CA can issue fake certificates)

In fact, none of the above points are correct.

1. SSL Certificate 0 is becoming cheaper. For individuals or start-up teams, you can also apply for a free certificate. At present, the SSL digital certificate web page can provide global trusted certificates as low as 100 yuan.

2. The fact that GitHub is brokered proves that the potential harm of unencrypted networks is very great.

3. With the growth of hardware level and algorithm optimization (such as Chacha20_Poly1305), the encryption overhead is more and more acceptable.

4. There are solutions to SSL-related vulnerabilities, such as Public key pinning in order to combat the risk of false certificates. And the risk of issuing fake certificates to CA is too great. Yi Weixin advises users not to choose cheap or free SSL certificates when buying SSL certificates.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.

Views: 0

*The comments in the above article only represent the author's personal views and do not represent the views and positions of this website. If you have more insights, please feel free to contribute and share.

Tag Search: Certificates websites encryption security features solutions browsers users communities risks development browsing features different wrong large unassailable nothing more than middlemen including vpn macOS Linux MariaDB MySQL Docker Shulou Information Shulou Technology Shulou Tech Info OPPO Reno Redmi Xiaomi NVidia Microsoft Huawei Apple MariaDB Redmi macOS NVidia Xiaomi Huawei Apple vpn Shulou Technology Shulou Information Linux Docker MySQL Microsoft Shulou Tech Info OPPO Reno MariaDB Redmi macOS NVidia Xiaomi Huawei Apple vpn Shulou Technology Shulou Information Linux Docker MySQL Microsoft Shulou Tech Info OPPO Reno

Share To

Related

Network Security

More Network Security >

Latest Network Security More Network Security >

Latest Internet Technology More Internet Technology >

Latest Development More Development >

Latest Database More Database >

Latest Servers More Servers >

Latest Mobile Phone More Mobile Phone >

Latest Android Software More Android Software >

Latest Apple Software More Apple Software >

Latest Computer Software News More Computer Software News >

Latest IT Information More IT Information >

Wechat

About us Contact us Product review car news thenatureplanet

© 2024 shulou.com SLNews company. All rights reserved.

12
Report