Certificate Pinning Alterting and Blocking Issues w/Latest 5.2 Release RRS feed

  • Question

  • I am running WIN 7 x64 SP1 and IE10 x64 using default limited admin logon account and EMET 5.2 post 3/16 download .

    If EPM is set on in IE10, certificate pinning alerting and blocking has numerous issues. Certificate pinning doesn't work at all when in IE inprivate mode. In IE normal mode, blocking alert will occur but connection will not be blocked in IE.

    Interestingly, certificate pinning alerting/blocking works fine for all the above tests when IE w/EPM on is run under full admin. privileges.


    Sunday, March 29, 2015 2:54 PM

All replies

  • I have the same issue. Win7 x64 SP1 and IE8. I was setting it up to show someone how EMET could protect the older browser with cert pinning by purposely configuring a bogus cert and selecting the blocking option. I couldn't get it to work at all unless IE was run as an admin. If I disabled EPM, the site was blocked but there was no EMET alert. If I ran IE as an administrator, the site was blocked and I received an alert.
    Sunday, May 10, 2015 3:42 AM