uphando
Kuyaphawulwa ukuba ngoku ngaphezu kwe-90% yeendawo ezivulwa ngabasebenzisi beChrome basebenzisa i-HTTPS. Ubukho bezinto ezifakiweyo ezilayishwe ngaphandle kwe-encryption zidala izisongelo zokhuseleko ngokuguqulwa komxholo ongakhuselekanga ukuba kukho ulawulo kwijelo lonxibelelwano (umzekelo, xa udibanisa nge-Wi-Fi evulekile). Isalathisi somxholo oxubileyo sifunyenwe singasebenzi kwaye silahlekisa umsebenzisi, njengoko singaboneleli ngovavanyo olucacileyo lokhuseleko lwephepha.
Okwangoku, ezona ntlobo ziyingozi kakhulu zomxholo oxutyiweyo, njengezikripthi kunye nee-iframes, sele zivaliwe ngokungagqibekanga, kodwa imifanekiso, iifayile zomsindo kunye neevidiyo zinokukhutshelwa nge-http: //. Ngokusebenzisa i-spoofing yemifanekiso, umhlaseli unokuthatha indawo ye-cookies zokulandela umkhondo wabasebenzisi, azame ukuxhaphaza ubuthathaka kwiiprosesa zemifanekiso, okanye enze umgunyathi ngokutshintshela ulwazi olunikezwe emfanekisweni.
Ukuqaliswa kokubhloka kwahlula ngamanqanaba amaninzi. IChrome 79, ebikelwe uDisemba 10, iya kuba nesetingi esitsha esiza kukuvumela ukuba ukhubaze ukubhloka kweziza ezithile. Olu seto luza kusetyenziswa kumxholo oxutyiweyo osele uvaliwe, njengezikripthi kunye nee-iframes, kwaye ziya kubizwa phezulu ngemenyu eyehlayo xa ucofa isimboli sokutshixa, ibuyisela isalathisi esicetywayo sangaphambili sokukhubaza ukuvala.
I-Chrome 80, ekulindeleke ngoFebruwari 4, iya kusebenzisa isikimu sokuthintela okuthambileyo kwiifayile zeaudio kunye nevidiyo, oku kuthetha ukutshintshwa ngokuzenzekelayo kwe-http: // amakhonkco kunye ne-https: //, eya kugcina ukusebenza ukuba uvimba oyingxaki uyafikeleleka nge-HTTPS. . Imifanekiso iya kuqhubeka ilayisha ngaphandle kotshintsho, kodwa ukuba ikhutshelwe nge-http://, i-https:// amaphepha aya kubonisa isalathisi soqhagamshelwano olungakhuselekanga kulo lonke iphepha. Ukutshintsha ngokuzenzekelayo kwi-https okanye kwi-block imifanekiso, abaphuhlisi besayithi baya kukwazi ukusebenzisa iipropathi ze-CSP zokuphucula-izicelo ezikhuselekileyo kunye ne-block-all-mixed-content. IChrome 81, ecwangciselwe uMatshi 17, iya kuzilungisa ngokuzenzekelayo i-http: // ukuya ku-https: // ukuze kufakwe imifanekiso exutyiweyo.
Ukongeza, uGoogle
Ukugcina ubumfihlo, xa ufikelela kwi-API yangaphandle, kuphela iibytes ezimbini zokuqala ze-hash yokungena kunye negama lokugqitha zihanjiswa (i-algorithm ye-hashing isetyenziswa
umthombo: opennet.ru