HTTP Public Key Pinning is no longer supported

Published: | Categories: Networking, Privacy & Security

Description

Firefox 72 has dropped the support for HTTP Public Key Pinning (HPKP) because of the low adoption rate and interoperability risk. Since Google Chrome has already removed the support with version 72 and the security feature is not supported by other browsers, any misconfigured or temporarily compromised site could be blocked only in Firefox, resulting in a degraded user experience. The Public-Key-Pins HTTP response header will be simply ignored from now on.

References