FTC Adds Security Measure to Consumer Websites
New security measures were implemented on the FTC’s public consumer websites donotcall.gov, ftccomplaintassistant.gov, and hsr.gov, the agency’s Chief Technologist Ashkan Soltani said Monday. It was called part of an ongoing effort by federal agencies to improve their websites. In addition…
Sign up for a free preview to unlock the rest of this article
Export Compliance Daily combines U.S. export control news, foreign border import regulation and policy developments into a single daily information service that reliably informs its trade professional readers about important current issues affecting their operations.
to the use of HTTPS encryption, the websites will use a feature known as HTTP Strict Transport Security (HSTS) “which hardcodes all future communications to be encrypted by default,” Soltani said. Now, when consumers attempt to visit the Do Not Call Registry, “HSTS-enabled browsers will automatically encrypt the connection without any additional instruction from the website,” he said. The additional security measure “reduces the potential for an attacker to maliciously redirect (downgrade) their connection or impersonate an FTC website when connecting from... insecure networks and open Wi-Fi hotspots,” he said.