Glossary of Security Terms: HPKP

September 3rd 2020

@mozillaMozilla Contributors

Mozilla (stylized as moz://a) is a free software community founded in 1998 by members of Netscape.

HTTP Public Key Pinning (HPKP) is a security feature that tells a web client to associate a specific cryptographic public key with a certain web server to decrease the risk of MITM attacks with forged certificates.

Learn more

```
Public-Key-Pins
```
```
Public-Key-Pins-Report-Only
```
RFC 7469
Wikipedia: HTTP Public Key Pinning

View Previous Terms:

Block cipher mode of operation
Certificate authority
Challenge-response authentication
Cipher
Cipher suite
Ciphertext
CORS
CORS-safelisted request header
CORS-safelisted response header
Cross-site scripting
Cryptanalysis
Cryptographic hash function
Cryptography
CSP
CSRF
Decryption
Digital certificate
DTLS (Datagram Transport Layer Security)
Encryption
Forbidden header name
Forbidden response header name
Hash
HMAC
HSTS
HTTPS
Key
MitM
OWASP
Preflight request
Public-key cryptography
Reporting directive
Robots.txt
Same-origin policy
Session Hijacking
SQL Injection
Symmetric-key cryptography
TOFU
Transport Layer Security (TLS)

Credits

Source: https://developer.mozilla.org/en-US/docs/Glossary/HPKP
Published under Open CC Attribution ShareAlike 3.0 license

The missing guide for building large-scale mobile apps

Glossary of Security Terms: HPKP

@mozillaMozilla Contributors

Learn more

View Previous Terms:

Credits

Tags