Public Key Pins Header

vcsjones · June 8, 2016, 6:31pm

Currently clients have no way to pin a public key of the API.

It would be nice if LetsEncrypt offered a supported way for a client to pin a public key against the API’s certificate chain.

I would propose that LetsEncrypt start sending the Public-Key-Pins HTTP header so that clients that want to start pinning public keys have a supported and automated means to do so.

To be clear, this isn’t a request for pinning public keys for certificates that the Let’s Encrypt CA issues, rather this is for the ACME API itself so that clients may pin against it.

rugk · June 9, 2016, 9:07pm

For reference linking to the previous thread on that subject:

system · July 9, 2016, 9:07pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
LetsEncrypt Client Pinning Client dev	4	2205	July 8, 2016
Project Proposal: Automating HTTP Public Key Pinning Feature Requests	1	1958	October 2, 2016
How can I use API in my code. and what is api link and how get API key credential Client dev	5	2369	July 21, 2018
Certificate pinning and Let's Encrypt Help	7	2377	February 4, 2021
How to get lets encrypt API key and acme URL Help	3	818	February 19, 2023

Public Key Pins Header

Related topics