HTTP Strict Transport Security

HSTS (HTTP Strict Transport Security) is yet another brick in the wall of defense against fraud. It is a mechanism which allows to declare that a particular website (or any other web application) can be reached only via a secure HTTPS connection within a given period of time. HSTS technology was introduced by major web browsers developers in 2009 (the matrix of web browsers supporting HSTS can be viewed here) and was described in detail in RFC-6797 by IETF in 2012.

In the following articles we will describe how HSTS works, how to enable it on Namecheap shared servers and check if it is working correctly.

25443 times

Need help? We're always here for you.