Year Of Security for Java – Week 8 – HTTP Strict Transport Security

Tweet What is it and why should I care? HTTP Strict Transport Security (HSTS) is a new(ish) technology that allows an application to force browsers to only use SSL/TLS (HTTPS, not HTTP) when visiting their application. This occurs when the application sets an HSTS specific HTTP response header. Browsers that support HSTS recognize the response […]