HTTP Protocol
TLS/SSL Integration
Encryption of Data in Transit
Data Integrity Protection
Server Authentication
Client Authentication
Handshake Steps
Certificate Exchange
Key Exchange
Cipher Suite Negotiation
Certificate Structure
Certificate Authorities
Certificate Chain Validation
Certificate Revocation
HSTS Header
HSTS Preloading
HSTS Policy Enforcement
Content-Security-Policy
X-Frame-Options
X-Content-Type-Options
Referrer-Policy
Cross-Site Scripting (XSS)
Cross-Site Request Forgery (CSRF)
Clickjacking
Man-in-the-Middle Attacks
Previous
9. HTTP Caching
Go to top
Next
11. Advanced HTTP Concepts