cancel
Showing results for 
Search instead for 
Did you mean: 

HTTP PUBLIC KEY PINNING

Short Question:

is it possible to support HPKP on the proxy in case of SSL Intercept? (Maybe using PDs?)

Frank

5 Replies

Re: HTTP PUBLIC KEY PINNING

No Solution :-(?

Re: HTTP PUBLIC KEY PINNING

I'm tinkering with this right now.  If I manage to come up with a solution, I will post it here.

Re: HTTP PUBLIC KEY PINNING

if you hava a solution it would be glad toshow it here.

I don't find a way to get the CA Hash from the connection which is required to verify it against the HPKP Header....

Re: HTTP PUBLIC KEY PINNING

I was pinning my hopes on SSL.Server.Certificate.SHA2-256Digest.  But, I still have to figure out how to work with the header ().

Re: HTTP PUBLIC KEY PINNING

with SSL.Server.Certificate.SHA2-256Digest  you will get the SHA256 digest from the whole certificate. For check the pinning you will need to have the SHA2-Digest from the servers public key....

More McAfee Tools to Help You
  • Subscription Service Notification (SNS)
  • How-to: Endpoint Removal Tool
  • Support: Endpoint Security
  • eSupport: Policy Orchestrator
  • Community Help Hub

      New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

    • Find Forum FAQs
    • Learn How to Earn Badges
    • Ask for Help
    Go to Community Help

    Join the Community

      Thousands of customers use the McAfee Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

    • Get helpful solutions from McAfee experts.
    • Stay connected to product conversations that matter to you.
    • Participate in product groups led by McAfee employees.
    Join the Community
    Join the Community