Facebook Upgrades Link Security with HSTS Preloading

Facebook and Instagram links will automatically update from HTTP to HTTPS for eligible websites, increasing both speed and security, the social media giant said.



Facebook has upgraded its link security infrastructure to include HSTS preloading, which automatically switches HTTP links to HTTPS for eligible websites. The change is intended to improve security and navigation speed for Facebook and Instagram links, according to the social media firm.

HTTP Strict Transport Security (HSTS) is a feature for websites to request a browser-only access to them over HTTPS. Preloading lets websites tell browsers to always perform this upgrade ahead of time. Many browsers support HSTS but many people still use browsers that don't. This ensures connections are secure when people click supported links from Facebook or Instagram.

Facebook determines which links are eligible for HTTPS based on two sources. One is the Chromium preload list, which is used in most major browsers and is regularly updated. The other is recording HSTS headers from sites shared on Facebook. The browser preload list is updated with any sites that serve HSTS with the preload directive.

Read more details here.

 

 

 

Black Hat Asia returns to Singapore with hands-on technical Trainings, cutting-edge Briefings, Arsenal open-source tool demonstrations, top-tier solutions and service providers in the Business Hall. Click for information on the conference and to register.

Dark Reading's Quick Hits delivers a brief synopsis and summary of the significance of breaking news events. For more information from the original source of the news item, please follow the link provided in this article. View Full Bio
 

Recommended Reading:

Comment  | 
Email This  | 
Print  | 
RSS
More Insights
Copyright © 2021 UBM Electronics, A UBM company, All rights reserved. Privacy Policy | Terms of Service