4 comments

[ 3.5 ms ] story [ 21.0 ms ] thread
An entire article on key pinning and the word "intermediate" is not used once? Pinning leaf certificates often causes more problems/outages than whatever security it provides.

See also: https://twitter.com/tollmanz/status/559920714774355968.

This isn't a very good article, and, in general, OWASP is a pretty poor source for cryptography topics.
What do you recommend instead?
(comment deleted)