发表新帖
发表新帖

Are HTTPS URLs encrypted?

前端 未结
关注
14 2087
无人共我
无人共我 2020-11-22 04:26

Are all URLs encrypted when using TLS/SSL (HTTPS) encryption? I would like to know because I want all URL data to be hidden when using TLS/SSL (HTTPS).

If TLS/SSL gi

14条回答
  • 独厮守ぢ
    独厮守ぢ (楼主)
    2020-11-22 04:50

    A third-party that is monitoring traffic may also be able to determine the page visited by examining your traffic an comparing it with the traffic another user has when visiting the site. For example if there were 2 pages only on a site, one much larger than the other, then comparison of the size of the data transfer would tell which page you visited. There are ways this could be hidden from the third-party but they're not normal server or browser behaviour. See for example this paper from SciRate, https://scirate.com/arxiv/1403.0297.

    In general other answers are correct, practically though this paper shows that pages visited (ie URL) can be determined quite effectively.

    0 讨论(0)
 看不清?
提交回复
热议问题