Security - Datong's Random Thoughts

Datong's Random Thoughts

Security

A collection of 3 posts

Making Certificates More Visible With Certificate Transparency

Certificate Transparency has been a popular term recently. Despite Google's hard effort on pushing every CA to adopt Certificate Transparency, the implications and technical details behind those two words are sometimes unclear. Hence, I am presenting this series of posts detailing the problem it is attempting to solve, how it

Getting Let's Encrypt Certificate for a Google App Engine Hosted Website

Let's Encrypt is a completely free Certificate Authority (CA) who distributed free and trusted TLS server certificates for website owners around the world to use. The process of using their certificate on a Google App Engine (GAE) hosted site, however, was a little tricky and thus I will record the

HSTS Preloading: What it is and why do you need it

The Background When Internet was first designed, security was not the the primary focus. With dedicated connections between nodes, limited access and CPU power, encryption did not seemed so necessary at the beginning. However, as the scale of Internet continues to grow, and the growing popularity of over-the-air connection media