HTTP Public Key Pinning (HPKP) for a self-signed Certificate

May 20, 2016 329 views
Security Nginx Ubuntu 16.04


Is it possible adding Public Key Pins for a self-signed Certificate?
HPKP has the potential to lock out users for a long time if used incorrectly! The use of backup certificates and/or pinning the CA certificate is recommend.

Which backup certificates could be pinned?

Would it open the door to MITM attack?

More info:

Best Regards,

Be the first one to answer this question.