{"version":"1.0","provider_name":"RiskInsight","provider_url":"https:\/\/www.riskinsight-wavestone.com\/en\/","title":"\u00c9pinglez vos certificats !","type":"rich","width":600,"height":338,"html":"<blockquote class=\"wp-embedded-content\" data-secret=\"IUKJg5HZdg\"><a href=\"https:\/\/www.riskinsight-wavestone.com\/en\/2013\/04\/epinglez-vos-certificats\/\">\u00c9pinglez vos certificats !<\/a><\/blockquote><iframe sandbox=\"allow-scripts\" security=\"restricted\" src=\"https:\/\/www.riskinsight-wavestone.com\/en\/2013\/04\/epinglez-vos-certificats\/embed\/#?secret=IUKJg5HZdg\" width=\"600\" height=\"338\" title=\"&#8220;\u00c9pinglez vos certificats !&#8221; &#8212; RiskInsight\" data-secret=\"IUKJg5HZdg\" frameborder=\"0\" marginwidth=\"0\" marginheight=\"0\" scrolling=\"no\" class=\"wp-embedded-content\"><\/iframe><script type=\"text\/javascript\">\n\/* <![CDATA[ *\/\n\/*! This file is auto-generated *\/\n!function(d,l){\"use strict\";l.querySelector&&d.addEventListener&&\"undefined\"!=typeof URL&&(d.wp=d.wp||{},d.wp.receiveEmbedMessage||(d.wp.receiveEmbedMessage=function(e){var t=e.data;if((t||t.secret||t.message||t.value)&&!\/[^a-zA-Z0-9]\/.test(t.secret)){for(var s,r,n,a=l.querySelectorAll('iframe[data-secret=\"'+t.secret+'\"]'),o=l.querySelectorAll('blockquote[data-secret=\"'+t.secret+'\"]'),c=new RegExp(\"^https?:$\",\"i\"),i=0;i<o.length;i++)o[i].style.display=\"none\";for(i=0;i<a.length;i++)s=a[i],e.source===s.contentWindow&&(s.removeAttribute(\"style\"),\"height\"===t.message?(1e3<(r=parseInt(t.value,10))?r=1e3:~~r<200&&(r=200),s.height=r):\"link\"===t.message&&(r=new URL(s.getAttribute(\"src\")),n=new URL(t.value),c.test(n.protocol))&&n.host===r.host&&l.activeElement===s&&(d.top.location.href=t.value))}},d.addEventListener(\"message\",d.wp.receiveEmbedMessage,!1),l.addEventListener(\"DOMContentLoaded\",function(){for(var e,t,s=l.querySelectorAll(\"iframe.wp-embedded-content\"),r=0;r<s.length;r++)(t=(e=s[r]).getAttribute(\"data-secret\"))||(t=Math.random().toString(36).substring(2,12),e.src+=\"#?secret=\"+t,e.setAttribute(\"data-secret\",t)),e.contentWindow.postMessage({message:\"ready\",secret:t},\"*\")},!1)))}(window,document);\n\/\/# sourceURL=https:\/\/www.riskinsight-wavestone.com\/wp-includes\/js\/wp-embed.min.js\n\/* ]]> *\/\n<\/script>\n","thumbnail_url":null,"thumbnail_width":null,"thumbnail_height":null,"description":"Dans un article pr\u00e9c\u00e9dent, nous \u00e9tudions comment am\u00e9liorer la s\u00e9curit\u00e9 des connexions HTTPS par l\u2019utilisation des m\u00e9canismes HTTP Strict Transport Security (HSTS). Cependant, nous \u00e9voquions \u00e9galement les risques r\u00e9siduels de d\u00e9chiffrement des \u00e9changes par l\u2019utilisation de \u201cvrais-faux\u201d certificats. Nous allons voir dans cet article comment mitiger ce risque, en utilisant une technique appel\u00e9e \u201ccertificate pinning\u201d, que l\u2019on peut traduire - un peu maladroitement - par \u201c\u00e9pingler les certificats\u201d."}