{"id":479124,"date":"2023-08-09T10:01:33","date_gmt":"2023-08-09T10:01:33","guid":{"rendered":""},"modified":"2023-09-05T11:18:13","modified_gmt":"2023-09-05T11:18:13","slug":"ssl-stripping-attack","status":"publish","type":"wiki","link":"https:\/\/oneproxy.pro\/jp\/wiki\/ssl-stripping-attack\/","title":{"rendered":"SSL \u30b9\u30c8\u30ea\u30c3\u30d4\u30f3\u30b0\u653b\u6483"},"content":{"rendered":"<p>SSL \u30b9\u30c8\u30ea\u30c3\u30d4\u30f3\u30b0\u653b\u6483\u3068\u306f\u3001\u653b\u6483\u8005\u304c\u88ab\u5bb3\u8005\u306e\u63a5\u7d9a\u3092 HTTPS \u304b\u3089 HTTP \u306b\u30c0\u30a6\u30f3\u30b0\u30ec\u30fc\u30c9\u3059\u308b\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u4fb5\u5bb3\u3092\u6307\u3057\u307e\u3059\u3002\u3053\u308c\u306b\u3088\u308a\u3001\u653b\u6483\u8005\u306f\u88ab\u5bb3\u8005\u304c\u5b89\u5168\u3060\u3068\u601d\u3063\u3066\u3044\u308b\u30c7\u30fc\u30bf\u3092\u508d\u53d7\u3001\u8aad\u307f\u53d6\u308a\u3001\u307e\u305f\u306f\u5909\u66f4\u3059\u308b\u3053\u3068\u304c\u3067\u304d\u307e\u3059\u3002\u3053\u308c\u306f\u3001\u30e6\u30fc\u30b6\u30fc\u304c\u81ea\u5206\u306e\u60c5\u5831\u304c\u4fb5\u5bb3\u3055\u308c\u3066\u3044\u308b\u3053\u3068\u3092\u77e5\u3089\u306a\u3044\u307e\u307e\u306b\u884c\u308f\u308c\u307e\u3059\u3002<\/p>\n<h2>SSL \u30b9\u30c8\u30ea\u30c3\u30d4\u30f3\u30b0\u653b\u6483\u306e\u8d77\u6e90\u306e\u6b74\u53f2<\/h2>\n<p>\u300cSSL \u30b9\u30c8\u30ea\u30c3\u30d4\u30f3\u30b0\u300d\u3068\u3044\u3046\u7528\u8a9e\u306f\u30012009 \u5e74\u306e Black Hat Briefings \u30ab\u30f3\u30d5\u30a1\u30ec\u30f3\u30b9\u3067\u3001\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u7814\u7a76\u8005\u306e Moxie Marlinspike \u6c0f\u306b\u3088\u3063\u3066\u521d\u3081\u3066\u4f5c\u3089\u308c\u307e\u3057\u305f\u3002Marlinspike \u6c0f\u306f\u3001\u3053\u306e\u653b\u6483\u3092\u5b9f\u884c\u3057\u3066\u5b89\u5168\u306a HTTPS \u63a5\u7d9a\u3092\u4fb5\u5bb3\u3059\u308b\u65b9\u6cd5\u3092\u5b9f\u6f14\u3057\u307e\u3057\u305f\u3002SSL \u30b9\u30c8\u30ea\u30c3\u30d4\u30f3\u30b0\u306f\u3001SSL\/TLS \u30d7\u30ed\u30c8\u30b3\u30eb\u306e\u5b9f\u88c5\u306e\u5f31\u70b9\u3092\u5229\u7528\u3059\u308b\u3001\u3088\u308a\u5e83\u7bc4\u306a\u653b\u6483\u30ab\u30c6\u30b4\u30ea\u306e\u4e00\u90e8\u3067\u3059\u3002<\/p>\n<h2>SSL \u30b9\u30c8\u30ea\u30c3\u30d4\u30f3\u30b0\u653b\u6483\u306b\u95a2\u3059\u308b\u8a73\u7d30\u60c5\u5831<\/h2>\n<h3>SSL \u3068\u305d\u306e\u91cd\u8981\u6027<\/h3>\n<p>SSL (Secure Sockets Layer) \u306f\u3001\u30cd\u30c3\u30c8\u30ef\u30fc\u30af\u901a\u4fe1\u3092\u4fdd\u8b77\u3059\u308b\u305f\u3081\u306e\u6a19\u6e96\u30d7\u30ed\u30c8\u30b3\u30eb\u3067\u3001Web \u30d6\u30e9\u30a6\u30b6\u3067\u306f HTTPS \u3068\u3057\u3066\u5b9f\u88c5\u3055\u308c\u308b\u3053\u3068\u304c\u3088\u304f\u3042\u308a\u307e\u3059\u3002SSL \u306f\u3001\u30e6\u30fc\u30b6\u30fc\u306e\u30d6\u30e9\u30a6\u30b6\u3068\u30b5\u30fc\u30d0\u30fc\u9593\u306e\u30c7\u30fc\u30bf\u3092\u6697\u53f7\u5316\u3057\u3001\u30d7\u30e9\u30a4\u30d0\u30b7\u30fc\u3068\u30c7\u30fc\u30bf\u306e\u6574\u5408\u6027\u3092\u78ba\u4fdd\u3057\u307e\u3059\u3002<\/p>\n<h3>SSL \u30b9\u30c8\u30ea\u30c3\u30d4\u30f3\u30b0\u653b\u6483\u306e\u4ed5\u7d44\u307f<\/h3>\n<p>SSL \u30b9\u30c8\u30ea\u30c3\u30d4\u30f3\u30b0\u653b\u6483\u306f\u3001\u5178\u578b\u7684\u306a\u4e2d\u9593\u8005 (MITM) \u653b\u6483\u30d5\u30ec\u30fc\u30e0\u30ef\u30fc\u30af\u5185\u3067\u884c\u308f\u308c\u307e\u3059\u3002\u63a5\u7d9a\u3092 HTTPS \u304b\u3089 HTTP \u306b\u30c0\u30a6\u30f3\u30b0\u30ec\u30fc\u30c9\u3059\u308b\u3053\u3068\u3067\u3001\u653b\u6483\u8005\u306f\u3069\u3061\u3089\u306e\u5074\u306b\u3082\u6c17\u4ed8\u304b\u308c\u305a\u306b\u30c7\u30fc\u30bf\u3092\u8aad\u307f\u53d6\u3063\u305f\u308a\u5909\u66f4\u3057\u305f\u308a\u3067\u304d\u307e\u3059\u3002\u3053\u306e\u653b\u6483\u306f\u901a\u5e38\u3001\u653b\u6483\u8005\u304c\u30c8\u30e9\u30d5\u30a3\u30c3\u30af\u3092\u7c21\u5358\u306b\u508d\u53d7\u3067\u304d\u308b\u516c\u5171\u306e Wi-Fi \u30cd\u30c3\u30c8\u30ef\u30fc\u30af\u3084\u305d\u306e\u4ed6\u306e\u74b0\u5883\u3092\u30bf\u30fc\u30b2\u30c3\u30c8\u306b\u3057\u307e\u3059\u3002<\/p>\n<h2>SSL \u30b9\u30c8\u30ea\u30c3\u30d4\u30f3\u30b0\u653b\u6483\u306e\u5185\u90e8\u69cb\u9020<\/h2>\n<ol>\n<li><strong>\u653b\u6483\u8005\u306e\u4f4d\u7f6e:<\/strong> \u653b\u6483\u8005\u306f\u30c8\u30e9\u30d5\u30a3\u30c3\u30af\u3092\u508d\u53d7\u3067\u304d\u308b\u7acb\u5834\u306b\u3044\u308b\u5fc5\u8981\u304c\u3042\u308a\u3001\u3053\u308c\u306f\u901a\u5e38\u3001\u540c\u3058\u30cd\u30c3\u30c8\u30ef\u30fc\u30af\u4e0a\u306b\u3044\u308b\u304b\u3001ARP \u30b9\u30d7\u30fc\u30d5\u30a3\u30f3\u30b0\u306a\u3069\u306e\u624b\u6cd5\u3092\u4f7f\u7528\u3059\u308b\u3053\u3068\u3067\u5b9f\u73fe\u3055\u308c\u307e\u3059\u3002<\/li>\n<li><strong>HTTP \u306b\u30c0\u30a6\u30f3\u30b0\u30ec\u30fc\u30c9:<\/strong> \u653b\u6483\u8005\u306f\u5b89\u5168\u306a HTTPS \u30ea\u30f3\u30af\u3092\u5909\u66f4\u3057\u3001HTTP \u30ea\u30f3\u30af\u306b\u7f6e\u304d\u63db\u3048\u307e\u3059\u3002<\/li>\n<li><strong>\u30c7\u30fc\u30bf\u306e\u508d\u53d7:<\/strong> HTTP \u7d4c\u7531\u3067\u9001\u4fe1\u3055\u308c\u305f\u3059\u3079\u3066\u306e\u60c5\u5831\u306f\u3001\u653b\u6483\u8005\u306b\u3088\u3063\u3066\u8aad\u307f\u53d6\u3089\u308c\u3001\u5834\u5408\u306b\u3088\u3063\u3066\u306f\u5909\u66f4\u3055\u308c\u308b\u53ef\u80fd\u6027\u304c\u3042\u308a\u307e\u3059\u3002<\/li>\n<li><strong>\u518d\u6697\u53f7\u5316\uff08\u30aa\u30d7\u30b7\u30e7\u30f3\uff09:<\/strong> \u9ad8\u5ea6\u306a\u653b\u6483\u3067\u306f\u3001\u653b\u6483\u8005\u306f\u30c7\u30fc\u30bf\u3092\u76ee\u7684\u306e\u30b5\u30fc\u30d0\u30fc\u306b\u9001\u4fe1\u3059\u308b\u524d\u306b\u518d\u6697\u53f7\u5316\u3059\u308b\u5834\u5408\u304c\u3042\u308a\u307e\u3059\u3002<\/li>\n<\/ol>\n<h2>SSL \u30b9\u30c8\u30ea\u30c3\u30d4\u30f3\u30b0\u653b\u6483\u306e\u4e3b\u306a\u7279\u5fb4\u306e\u5206\u6790<\/h2>\n<ul>\n<li><strong>\u30b9\u30c6\u30eb\u30b9:<\/strong> \u88ab\u5bb3\u8005\u306b\u6c17\u3065\u304b\u308c\u306a\u3044\u3053\u3068\u304c\u591a\u3044\u3002<\/li>\n<li><strong>\u52b9\u679c\u7684\uff1a<\/strong> \u5927\u91cf\u306e\u6a5f\u5bc6\u60c5\u5831\u3092\u508d\u53d7\u3059\u308b\u3053\u3068\u304c\u53ef\u80fd\u3067\u3059\u3002<\/li>\n<li><strong>\u30d7\u30e9\u30c3\u30c8\u30d5\u30a9\u30fc\u30e0\u306b\u4f9d\u5b58\u3057\u306a\u3044:<\/strong> \u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u306e\u305f\u3081\u306b SSL\/TLS \u306b\u4f9d\u5b58\u3059\u308b\u3042\u3089\u3086\u308b\u30b7\u30b9\u30c6\u30e0\u3067\u5b9f\u884c\u3067\u304d\u307e\u3059\u3002<\/li>\n<\/ul>\n<h2>SSL \u30b9\u30c8\u30ea\u30c3\u30d4\u30f3\u30b0\u653b\u6483\u306e\u7a2e\u985e<\/h2>\n<table>\n<thead>\n<tr>\n<th>\u30bf\u30a4\u30d7<\/th>\n<th>\u8aac\u660e<\/th>\n<\/tr>\n<\/thead>\n<tbody>\n<tr>\n<td>\u57fa\u672c\u7684\u306a SSL \u9664\u53bb<\/td>\n<td>HTTPS\u304b\u3089HTTP\u3078\u306e\u7c21\u5358\u306a\u30c0\u30a6\u30f3\u30b0\u30ec\u30fc\u30c9<\/td>\n<\/tr>\n<tr>\n<td>\u62e1\u5f35 SSL \u30b9\u30c8\u30ea\u30c3\u30d4\u30f3\u30b0<\/td>\n<td>\u518d\u6697\u53f7\u5316\u3084\u305d\u306e\u4ed6\u306e\u8907\u96d1\u306a\u51e6\u7406\u3092\u542b\u3080<\/td>\n<\/tr>\n<tr>\n<td>\u30e2\u30d0\u30a4\u30eb SSL \u30b9\u30c8\u30ea\u30c3\u30d4\u30f3\u30b0<\/td>\n<td>\u30e2\u30d0\u30a4\u30eb\u30c7\u30d0\u30a4\u30b9\u3092\u7279\u306b\u30bf\u30fc\u30b2\u30c3\u30c8\u3068\u3059\u308b<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<h2>SSL \u30b9\u30c8\u30ea\u30c3\u30d4\u30f3\u30b0\u653b\u6483\u306e\u4f7f\u7528\u65b9\u6cd5\u3001\u554f\u984c\u3001\u89e3\u6c7a\u7b56<\/h2>\n<h3>\u7528\u9014<\/h3>\n<ul>\n<li><strong>\u9055\u6cd5\u884c\u70ba:<\/strong> \u500b\u4eba\u60c5\u5831\u3084\u91d1\u878d\u60c5\u5831\u3092\u76d7\u3080\u3002<\/li>\n<li><strong>\u4f01\u696d\u30b9\u30d1\u30a4\u6d3b\u52d5:<\/strong> \u6a5f\u5bc6\u60c5\u5831\u306e\u508d\u53d7\u3002<\/li>\n<\/ul>\n<h3>\u554f\u984c\u3068\u89e3\u6c7a\u7b56<\/h3>\n<ul>\n<li><strong>\u554f\u984c\uff1a<\/strong> \u30ea\u30b9\u30af\u3092\u8a8d\u8b58\u3057\u3066\u3044\u306a\u3044\u30e6\u30fc\u30b6\u30fc\u3002<br \/>\n<strong>\u89e3\u6c7a\uff1a<\/strong> \u30e6\u30fc\u30b6\u30fc\u3092\u6559\u80b2\u3057\u3001\u30d6\u30e9\u30a6\u30b6\u306e\u5357\u4eac\u9320\u30a2\u30a4\u30b3\u30f3\u306a\u3069\u306e\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u30a4\u30f3\u30b8\u30b1\u30fc\u30bf\u30fc\u306e\u4f7f\u7528\u3092\u4fc3\u9032\u3057\u307e\u3059\u3002<\/li>\n<li><strong>\u554f\u984c\uff1a<\/strong> HTTPS \u306e\u975e\u52b9\u7387\u7684\u306a\u5b9f\u88c5\u3002<br \/>\n<strong>\u89e3\u6c7a\uff1a<\/strong> HTTP Strict Transport Security (HSTS) \u304a\u3088\u3073\u305d\u306e\u4ed6\u306e\u5f37\u529b\u306a\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u5bfe\u7b56\u3092\u5b9f\u88c5\u3057\u307e\u3059\u3002<\/li>\n<\/ul>\n<h2>\u4e3b\u306a\u7279\u5fb4\u3068\u985e\u4f3c\u7528\u8a9e\u3068\u306e\u6bd4\u8f03<\/h2>\n<table>\n<thead>\n<tr>\n<th>\u5b66\u671f<\/th>\n<th>\u7279\u5fb4<\/th>\n<th>\u985e\u4f3c\u70b9<\/th>\n<th>\u9055\u3044<\/th>\n<\/tr>\n<\/thead>\n<tbody>\n<tr>\n<td>SSL \u30b9\u30c8\u30ea\u30c3\u30d4\u30f3\u30b0<\/td>\n<td>HTTPS\u3092HTTP\u306b\u30c0\u30a6\u30f3\u30b0\u30ec\u30fc\u30c9\u3059\u308b<\/td>\n<td>MITM\u653b\u6483<\/td>\n<td>SSL\u3092\u30bf\u30fc\u30b2\u30c3\u30c8\u3068\u3059\u308b<\/td>\n<\/tr>\n<tr>\n<td>MITM\u653b\u6483<\/td>\n<td>\u901a\u4fe1\u3092\u508d\u53d7\u3057\u3001\u5909\u66f4\u3059\u308b<\/td>\n<td>SSL\u3092\u542b\u3080<\/td>\n<td>\u3088\u308a\u5e83\u3044\u7bc4\u56f2<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<h2>\u672a\u6765\u306e\u5c55\u671b\u3068\u30c6\u30af\u30ce\u30ed\u30b8\u30fc<\/h2>\n<ul>\n<li><strong>\u5f37\u5316\u3055\u308c\u305f\u691c\u51fa:<\/strong> SSL \u30b9\u30c8\u30ea\u30c3\u30d4\u30f3\u30b0\u653b\u6483\u3092\u691c\u51fa\u3059\u308b\u305f\u3081\u306e\u65b9\u6cd5\u304c\u6539\u5584\u3055\u308c\u307e\u3057\u305f\u3002<\/li>\n<li><strong>HSTS \u306e\u5e83\u7bc4\u306a\u63a1\u7528:<\/strong> \u3053\u3046\u3057\u305f\u653b\u6483\u3092\u9632\u3050\u6709\u671b\u306a\u6280\u8853\u3002<\/li>\n<\/ul>\n<h2>\u30d7\u30ed\u30ad\u30b7\u30b5\u30fc\u30d0\u30fc\u304c SSL \u30b9\u30c8\u30ea\u30c3\u30d4\u30f3\u30b0\u653b\u6483\u3068\u3069\u306e\u3088\u3046\u306b\u95a2\u4fc2\u3059\u308b\u304b<\/h2>\n<p>\u30d7\u30ed\u30ad\u30b7 \u30b5\u30fc\u30d0\u30fc\u306f\u3001SSL \u30b9\u30c8\u30ea\u30c3\u30d4\u30f3\u30b0\u653b\u6483\u306e\u30bf\u30fc\u30b2\u30c3\u30c8\u306b\u3082\u9632\u5fa1\u306b\u3082\u306a\u308a\u5f97\u307e\u3059\u3002\u653b\u6483\u8005\u304c\u30d7\u30ed\u30ad\u30b7 \u30b5\u30fc\u30d0\u30fc\u3092\u4f7f\u7528\u3057\u3066\u30c8\u30e9\u30d5\u30a3\u30c3\u30af\u3092\u508d\u53d7\u3059\u308b\u3068\u3001\u30d7\u30ed\u30ad\u30b7 \u30b5\u30fc\u30d0\u30fc\u304c\u30bf\u30fc\u30b2\u30c3\u30c8\u306b\u306a\u308b\u53ef\u80fd\u6027\u304c\u3042\u308a\u307e\u3059\u3002\u4e00\u65b9\u3001OneProxy (oneproxy.pro) \u304c\u63d0\u4f9b\u3059\u308b\u3088\u3046\u306a\u5b89\u5168\u306a\u30d7\u30ed\u30ad\u30b7 \u30b5\u30fc\u30d0\u30fc\u306f\u3001HTTPS \u63a5\u7d9a\u3092\u5f37\u5236\u3057\u3001HSTS \u3092\u4f7f\u7528\u3059\u308b\u3088\u3046\u306b\u69cb\u6210\u3067\u304d\u308b\u305f\u3081\u3001SSL \u30b9\u30c8\u30ea\u30c3\u30d4\u30f3\u30b0\u306e\u30ea\u30b9\u30af\u3092\u8efd\u6e1b\u3067\u304d\u307e\u3059\u3002<\/p>\n<h2>\u95a2\u9023\u30ea\u30f3\u30af<\/h2>\n<ul>\n<li><a href=\"https:\/\/oneproxy.pro\/jp\/\" target=\"_new\" rel=\"noopener\">OneProxy\u516c\u5f0f\u30b5\u30a4\u30c8<\/a><\/li>\n<li><a href=\"https:\/\/www.blackhat.com\/\" target=\"_new\" rel=\"noopener nofollow\">Moxie Marlinspike \u306e Black Hat \u30d7\u30ec\u30bc\u30f3\u30c6\u30fc\u30b7\u30e7\u30f3<\/a><\/li>\n<li><a href=\"https:\/\/en.wikipedia.org\/wiki\/HTTPS\" target=\"_new\" rel=\"noopener nofollow\">HTTPS\u3068SSL\u3092\u7406\u89e3\u3059\u308b<\/a><\/li>\n<li><a href=\"https:\/\/developer.mozilla.org\/en-US\/docs\/Web\/HTTP\/Headers\/Strict-Transport-Security\" target=\"_new\" rel=\"noopener nofollow\">HTTP \u53b3\u683c\u306a\u30c8\u30e9\u30f3\u30b9\u30dd\u30fc\u30c8 \u30bb\u30ad\u30e5\u30ea\u30c6\u30a3 (HSTS)<\/a><\/li>\n<\/ul>\n<p><strong>\u6ce8\u8a18\uff1a<\/strong> \u3053\u3053\u306b\u8a18\u8f09\u3055\u308c\u3066\u3044\u308b\u60c5\u5831\u306f\u6700\u7d42\u66f4\u65b0\u6642\u70b9\u3067\u6b63\u78ba\u306a\u3082\u306e\u3067\u3042\u308a\u3001\u6280\u8853\u306e\u9032\u6b69\u3084\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u74b0\u5883\u306e\u5909\u5316\u306b\u3088\u308a\u5909\u66f4\u3055\u308c\u308b\u53ef\u80fd\u6027\u304c\u3042\u308a\u307e\u3059\u3002<\/p>","protected":false},"featured_media":479125,"menu_order":0,"template":"","meta":{"_acf_changed":false,"content-type":"","inline_featured_image":false,"footnotes":""},"class_list":["post-479124","wiki","type-wiki","status-publish","has-post-thumbnail","hentry"],"acf":{"faq_title":"Frequently Asked Questions about <mark>SSL Stripping Attack<\/mark>","faq_items":[{"question":"What is an SSL Stripping Attack?","answer":"<p>An SSL Stripping Attack is a method where an attacker downgrades a victim's connections from HTTPS to HTTP. This allows the attacker to intercept, read, or modify data that the victim believes to be secure, without them noticing that their information is being compromised.<\/p>"},{"question":"Who first coined the term \"SSL Stripping\"?","answer":"<p>The term \"SSL stripping\" was first coined by a security researcher named Moxie Marlinspike during the Black Hat Briefings conference in 2009.<\/p>"},{"question":"How does SSL Stripping Attack work?","answer":"<p>The SSL stripping attack takes place within a Man-in-the-Middle (MITM) attack framework. By downgrading a connection from HTTPS to HTTP, an attacker can read or modify the data without either party noticing. It usually targets public Wi-Fi networks and other environments where the attacker can intercept traffic easily.<\/p>"},{"question":"What are the types of SSL Stripping Attack?","answer":"<p>There are three main types of SSL Stripping Attacks:<\/p><ol><li>Basic SSL Stripping - Simple downgrade from HTTPS to HTTP.<\/li><li>Extended SSL Stripping - Includes re-encryption and other complexities.<\/li><li>Mobile SSL Stripping - Specifically targets mobile devices.<\/li><\/ol>"},{"question":"How can SSL Stripping Attacks be prevented?","answer":"<p>SSL Stripping Attacks can be prevented by educating users about the risks, promoting the use of security indicators like padlock icons in browsers, implementing HTTP Strict Transport Security (HSTS), and using secure proxy servers like OneProxy that enforce HTTPS connections.<\/p>"},{"question":"What is the future perspective related to SSL Stripping Attack?","answer":"<p>The future perspective related to SSL Stripping Attack includes enhanced detection methods and the widespread adoption of technologies like HSTS, which can significantly reduce the risk of these attacks.<\/p>"},{"question":"How are proxy servers like OneProxy associated with SSL Stripping Attack?","answer":"<p>Proxy servers like OneProxy can both be a target and a defense against SSL stripping attacks. They can be targeted when attackers use them to intercept traffic. Conversely, secure proxy servers can be configured to enforce HTTPS connections and use HSTS, reducing the risk of SSL stripping.<\/p>"},{"question":"Where can I find more information about SSL Stripping Attack?","answer":"<p>You can find more information about SSL Stripping Attack through the following resources:<\/p><ul><li><a href=\"https:\/\/www.oneproxy.pro\/\" target=\"_new\">OneProxy Official Website<\/a><\/li><li><a href=\"https:\/\/www.blackhat.com\/\" target=\"_new\">Moxie Marlinspike's Black Hat Presentation<\/a><\/li><li><a href=\"https:\/\/en.wikipedia.org\/wiki\/HTTPS\" target=\"_new\">Understanding HTTPS and SSL<\/a><\/li><li><a href=\"https:\/\/developer.mozilla.org\/en-US\/docs\/Web\/HTTP\/Headers\/Strict-Transport-Security\" target=\"_new\">HTTP Strict Transport Security (HSTS)<\/a><\/li><\/ul>"}]},"_links":{"self":[{"href":"https:\/\/oneproxy.pro\/jp\/wp-json\/wp\/v2\/wiki\/479124","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/oneproxy.pro\/jp\/wp-json\/wp\/v2\/wiki"}],"about":[{"href":"https:\/\/oneproxy.pro\/jp\/wp-json\/wp\/v2\/types\/wiki"}],"version-history":[{"count":0,"href":"https:\/\/oneproxy.pro\/jp\/wp-json\/wp\/v2\/wiki\/479124\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/oneproxy.pro\/jp\/wp-json\/wp\/v2\/media\/479125"}],"wp:attachment":[{"href":"https:\/\/oneproxy.pro\/jp\/wp-json\/wp\/v2\/media?parent=479124"}],"curies":[{"name":"\u3046\u30fc\u3093","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}