The Federal Trade Commission (FTC) has joined a number of other federal agencies in deploying additional security best practices for public consumer websites donotcall.gov, ftccomplaintassistant.gov and hsr.gov. The websites have enabled a feature called HTTP Strict Transport Security (HSTS), which hardcodes all future communications to be encrypted by default so when visitors attempt to visit the sites, HSTS-enabled browsers will automatically encrypt the connection with any additional instruction from the website, reducing the potential for an attacker to impersonate an FTC website when connecting from open WiFi hotpots or insecure networks, the FTC’s blog reports.
Full Story
Comments
If you want to comment on this post, you need to login.