stackoom
  简体   繁体   中英

Is data retrieved over SSL cached by the client browser?

 原文  2009-07-28 16:22:42       ssl/ caching

Question

I know that data retrieved over SSL (https) is encrypted over the wire, but once it arrives at the browser, is it stored in the client's browser cache? If so, is it stored encrypted or in plain text?

This probably depends on the browser, so perhaps different browsers do different things? Modern browsers better behaved than outdated ones?

2 answers

solution1
 5  2009-07-28 16:25:15

You can use the standard Cache-Control HTTP header to control the client's behaviour. It is possible to disable caching, eg Cache-Control: no-cache .

As far as I know, most desktop browsers store the cache unencrypted.

solution2
 3 ACCPTED  2009-07-28 16:27:32

I believe that this is browser-specific. For example, Firefox has a preference about this in about:config see this article in Mozilla's KB . I don't know about other browsers (IE might have something in advanced security settings).

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Web browser cached information still protected by SSL? Client identification over SSL SSL Socket over socks proxy - Is client <---> server data encrypted? HttpWebRequest over SSL with client credentials ActiveMQ over SSL to a .Net client Appengine data over SSL? PHP SOAP client with certificates over SSL Java SOAP service over SSL with client certificates Android Client connecting to the Server over SSL Java client certificates over HTTPS/SSL
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM