Next-Gen App & Browser
Testing Cloud
Trusted by 2 Mn+ QAs & Devs to accelerate their release cycles
HTTP Public Key Pinning
Last updated on : 2023-03-20
Overview
You can use this free and open source code to declare that a website's HTTPS certificate should only be treated as valid if the public key is contained in a list specified over HTTP to prevent MITM attacks that use valid CA-issued certificates.
Code snippets
index.html
Source:index.html 
demystifying-http-security-headers.html
Source:demystifying-http-security-headers.html
Browser Compatibility
- HTTP Public Key Pinning on IE is fully supported on None of the versions, partially supported on None of the versions, and not supported on 5.5-11 IE versions.
- HTTP Public Key Pinning on Edge is fully supported on None of the versions, partially supported on None of the versions, and not supported on 12-111 Edge versions.
- HTTP Public Key Pinning on Firefox is fully supported on 35-71, partially supported on None of the versions, and not supported on 2-113 Firefox versions.
- HTTP Public Key Pinning on Chrome is fully supported on 38-71, partially supported on None of the versions, and not supported on 4-114 Chrome versions.
- HTTP Public Key Pinning on Safari is fully supported on None of the versions, partially supported on None of the versions, and not supported on 3.2-16.4 Safari versions.
- HTTP Public Key Pinning on Opera is fully supported on 25-65, partially supported on 23-23, and not supported on 9.5-95 Opera versions.
- HTTP Public Key Pinning on Safari on iOS is fully supported on None of the versions, partially supported on None of the versions, and not supported on 3.2-16.4 Safari on iOS versions.
- HTTP Public Key Pinning on Android Browser is fully supported on None of the versions, partially supported on None of the versions, and not supported on 2.1-111 Android Browser versions.
- HTTP Public Key Pinning on Opera Mobile is fully supported on None of the versions, partially supported on None of the versions, and not supported on 10-73 Opera Mobile versions.
- HTTP Public Key Pinning on Chrome for Android is fully supported on None of the versions, partially supported on None of the versions, and not supported on 97-111 Chrome for Android versions.
- HTTP Public Key Pinning on Firefox for Android is fully supported on None of the versions, partially supported on None of the versions, and not supported on 95-110 Firefox for Android versions.
- HTTP Public Key Pinning on Samsung Internet is fully supported on 4-10.1, partially supported on None of the versions, and not supported on 11.1-20 Samsung Internet versions.
Browser Compatibility Score
IE
Edge
Firefox
Chrome
Safari
Opera
Safari on iOS
Android BrowserBrowser Support For Android Browser Versions
Opera Mobile
Chrome for AndroidBrowser Support For Chrome for Android Versions
Firefox for AndroidBrowser Support For Firefox for Android Versions
Samsung InternetBrowser Support For Samsung Internet Versions
Debug webpages on the go with LT Debug Chrome extension.
Add to Chrome
Test your website on 3000+ browsers
Test your website on 3000+ real browsers and operating systems for mobile and desktop with the LambdaTest cloud. Perform browser compatibility test for HTTP Public Key Pinning and many more web technologies that are a part of your website or web-application.
Last Modified date
2023-03-20
Chrome
Safari
Firefox
Internet Explorer
Opera
EdgeReferences
Data sourced from
- - The World Wide Web Consortium (W3C) (https://www.w3.org/TR/)
- - CanIuse (https://caniuse.com/)
- - Mozzila MDN Web Docs (https://developer.mozilla.org/en-US/)
- - Web.Dev (https://web.dev/)
- - Chrome Platform Status (https://chromestatus.com/features)
- - WebKit Feature Status (https://webkit.org/status/)
Debug webpages on the go with LT Debug Chrome extension.
Add to Chrome
Debug Your Mobile Websites Faster With LT Browser!
Harness the power of Chromium-based engine to deliver responsive websites and web apps.
Try for free
Try LambdaTest Now !!
Get 100 minutes of automation test minutes FREE!!
Was this article helpful?
