Home / Companies / Cloudflare / Blog / Post Details
Content Deep Dive

Avoiding downtime: modern alternatives to outdated certificate pinning practices

Blog post from Cloudflare

Post Details
Company
Date Published
Author
Dina Kozlov
Word Count
2,953
Company Posts That Month
18
Language
English
Hacker News Points
-
Post removed?
No
Summary

Certificate pinning, once considered a gold standard for security, has become outdated in today's evolving technological landscape. The practice involves associating a hostname with a specific TLS certificate to prevent man-in-the-middle attacks. However, frequent changes in the PKI ecosystem have led to an increase in outages caused by certificate pinning. Modern standards and practices such as shorter certificate lifetimes, regular rotation of intermediate certificates, and increased use of certificate transparency are making the need for certificate pinning obsolete. These advancements offer automated, scalable, and robust security measures without the management overhead or risk associated with certificate pinning.

Trends Found in this Post
Trend Post Mentions Total Month Mentions Posts Companies MoM
Real-time 1 2,178 673 199 -6%
Use This Data

Use this post, company, and trend context to find content marketing opportunities, perform competitive analysis, or address product feature gaps via the Plushcap MCP server or the Plushcap API.