Posts Tagged ‘HSTS’

New Browser Security Features have Tracking Side-Effects

Wednesday, October 28th, 2015

If browser developers spent less time adding tracking and spying features and more time ensuring that their products are free of bugs, they’d probably have happier customers.

Most modern browsers are not simple tools anymore to display HTML websites properly in the browser. They are complex programs that support a wide variety of technologies including several designed to improve the security and privacy of users. While that is a good thing usually, it may lead to issues as well if these new technologies can be abused.

(more…)

How to Prevent HSTS Tracking in Firefox

Friday, October 16th, 2015

For every step taken to make browsing more secure and private, there are a thousand coders out there, trying to figure out a way around it.

HTTP Strict Transport Security (HSTS) was designed to help secure websites (those using HTTPS) by declaring to web browsers that they should communicate only via HTTPS with the server to protect connections against downgrade attacks and cookie hijacking. Mozilla implemented support for HSTS in its current form in Firefox in 2014 and it has been active in all Firefox versions ever since.

(more…)