Beginner Cybersecurity & Cryptography

Q28 / 100

What is the purpose of HTTPS certificate pinning?

Correct! Well done.

Incorrect.

The correct answer is B) Hardcoding expected certificate or public key hashes in an application, rejecting connections with different certificates even if signed by a trusted CA

B

Correct Answer

Hardcoding expected certificate or public key hashes in an application, rejecting connections with different certificates even if signed by a trusted CA

Explanation

Certificate pinning prevents rogue CA attacks: even if an attacker has a CA-signed certificate, the app rejects it if it doesn't match the pinned hash. Challenges: certificate rotation requires app updates.

Previous All Questions Next

Progress

28/100

Browse All Cybersecurity & Cryptography Questions

100 questions · beginner to advanced