This session was not filmed.
A wide range of security related HTTP headers are now starting to gain wider browser support, but a lot of them are not well known by developers. Using SSL is a good start for security, but you should also strive towards using the HTTP headers Strict-Transport-Security, Content-Security-Policy and Public-Key-Pins. In order to do that, you need to understand what they really mean. Using these best practices, you will get more value out of your SSL certificates and make your site more secure for your end-users.
YOU MAY ALSO LIKE: