From the course: SSL Certificates for Web Developers
Unlock the full course today
Join today to access over 22,700 courses taught by industry experts or purchase this course individually.
HTTP Strict Transport Security (HSTS) - SSL Tutorial
From the course: SSL Certificates for Web Developers
HTTP Strict Transport Security (HSTS)
- [Narrator] In this movie, we're going to talk about something called HTTP Strict Transport Security or HSTS for short. A few years ago, browser developers came up with a great idea. If we want everyone to be using the web as securely as possible, then it'd be a great idea if we had the ability to tell web browsers that they should only interact with some websites using HTTPS. If we could tell them, then they would know. The browser could remember that fact and it could automatically direct all requests for that website to HTTPS. There would be no more insecure connections. Now in the last movie, we went ahead and told the web server that it should make this redirect course. But remember how that happens. The browser first makes an insecure request to the web server, the web server responds by saying oh, no, no, you want the secure connection, so it sends a insecure request back to the web browser. The web browser then says oh, now I understand, I'm going to reissue the request on a…