) is a security model in which a client needs to create a trust relationship with an unknown server. To do that, clients will look for identifiers (for example public keys) stored locally. If an identifier is found, the client can establish the connection. If no identifier is found, the client can prompt the user to determine if the client should trust the identifier. Trust On First Use (TOFU TOFU is used in the SSH protocol, in ( ) where the browsers will accept the first public key returned by the server, and in ( ) where a browser will obey the redirection rule. HTTP Public Key Pinning HPKP Strict-Transport-Security HSTS Learn more ( ) HTTP Public Key Pinning HPKP Public-Key-Pins Wikipedia: TOFU View Previous Terms: Block cipher mode of operation Certificate authority Challenge-response authentication Cipher Cipher suite Ciphertext CORS CORS-safelisted request header CORS-safelisted response header Cross-site scripting Cryptanalysis Cryptographic hash function Cryptography CSP CSRF Decryption Digital certificate DTLS (Datagram Transport Layer Security) Encryption Forbidden header name Forbidden response header name Hash HMAC HPKP HSTS HTTPS Key MitM OWASP Preflight request Public-key cryptography Reporting directive Robots.txt Same-origin policy Session Hijacking SQL Injection Symmetric-key cryptography Transport Layer Security (TLS) Credits Source: https://developer.mozilla.org/en-US/docs/Glossary/TOFU Published under license Open CC Attribution ShareAlike 3.0

Mozilla

Glossary of Security Terms: Transport Layer Security

Glossary of Security Terms: Symmetric-Key Cryptography

Read My Stories

Too Long; Didn't Read

Make resilience your competitive advantage

Glossary of Security Terms: TOFU

About Author

Comments

TOPICS

THIS ARTICLE WAS FEATURED IN

Related Stories

Untitled Story

A Quick Introduction to the Resize Observer API

10 VSCode Extensions To Make Your Life Easier

10 Ways Stand Out as a Java Developer and Land that Dream Job

10 Tips For Junior Developers To Succeed in Code

10 Things Every Beginner Should Know When Learning Javascript And React

A Quick Introduction to the Resize Observer API

10 VSCode Extensions To Make Your Life Easier

10 Ways Stand Out as a Java Developer and Land that Dream Job

10 Tips For Junior Developers To Succeed in Code

10 Things Every Beginner Should Know When Learning Javascript And React

Light-Mode

Classic

Newspaper

Dark-Mode

Neon Noir

Minty

HN StartUps