Microsoft releases http strict transport security for IE 11




Microsoft has support for HTTP Strict Transport Security for Internet Explorer 11 on Windows 7 and Windows 8.1. The security functionality was enabled by default in IE 11 and Edge in the Windows 10-test version.

Internet Explorer 10 logo (75 pix) Http strict transport protection systems is to IE 11 on Windows 7 and 8.1 come as part of cumulative security updates that have been rolled out on Patch Tuesday, says Microsoft. Hsts was already present in Internet Explorer 11 in the Windows 10 and preview the new Edge browser includes the feature.

HTTP Strict Transport Security is an IETF protocol that sites are protected against certain man-in-the-middle or downgrade attacks, that cause the TLS-protection is removed and communication between server and user to intercept. Thanks hsts give sites via an HTTP header that they can only be visited via https. Unprotected connections get a redirect to https.

The functionality ensures that https sites use a valid certificate. Browsers know which sites based hsts work through a list which they track. Chrome, Safari and Firefox support the preloaded list already.


In: Technology & Gadgets Asked By: [15575 Red Star Level]

Answer this Question

You must be Logged In to post an Answer.

Not a member yet? Sign Up Now »