Y
Hacker News
new
|
ask
|
show
|
jobs
by
vl
1641 days ago
But isn’t this exactly what client-side certificates are invented for?
1 comments
noduerme
1641 days ago
Yeah. Maybe out of paranoia, there was concern that a rogue employee could snatch a client side key and reestablish a session from outside. The fingerprinting was aimed at making any attempt at that easily identifiable.
link