HSTS (HTTP Strict Transport Security) 是什么,为什么我们要开启HSTS (HTTP Strict Transport Security)?
关于HTTPS的回顾
The security of HTTPS is that of the underlying TLS, which typically uses long-term public and private keys to generate a short term session key which is then used to encrypt the data flow between client and server. X.509 certificates are used to authenticate the server (and sometimes the client as well). As a consequence, certificate authorities and public key certificates are necessary to verify the relation between the certificate and its owner, as well as to generate, sign, and administer the validity of certificates. 继续阅读开启HSTS (HTTP Strict Transport Security)的重要性