Glossary of Security Terms: TOFUby@mozilla

Glossary of Security Terms: TOFU

tldt arrow
Read on Terminal Reader🖨️

Too Long; Didn't Read

Trust On First Use (TOFU) is a security model in which a client needs to create a trust relationship with an unknown server. To do that, clients will look for identifiers (for example public keys) stored locally. If an identifieris found, the client can establish the connection. If no identifier is found, a client can prompt the user to determine if the client should trust the identifier. TOFU is used in the SSH protocol, in HTTP Public Key Pinning (HPKP) and in HSTS.

Company Mentioned

Mention Thumbnail
featured image - Glossary of Security Terms: TOFU
Mozilla Contributors HackerNoon profile picture

@mozilla

Mozilla Contributors

About @mozilla
LEARN MORE ABOUT @MOZILLA'S EXPERTISE AND PLACE ON THE INTERNET.
react to story with heart
Mozilla Contributors HackerNoon profile picture
by Mozilla Contributors @mozilla.Mozilla (stylized as moz://a) is a free software community founded in 1998 by members of Netscape.
Read My Stories

RELATED STORIES

L O A D I N G
. . . comments & more!
Hackernoon hq - po box 2206, edwards, colorado 81632, usa