Skip to content
← Back to Glossary
Security Headers Checked by Vezraa

HTTP Strict Transport Security (HSTS)

A header that forces browsers to only access your site over HTTPS.

HSTS tells browsers to always use HTTPS connections, even if the user types http:// or clicks an http:// link. Prevents SSL stripping and man-in-the-middle attacks. Set with a long max-age and consider the preload list for permanent enforcement.

Related Terms

See this vulnerability in the database

See if your app is vulnerable

Vezraa checks for this security issues. Scan in 25 seconds.

HTTP Strict Transport Security (HSTS) — Security Glossary | Vezraa