A security engineer is concerned about susceptibility to HTTP downgrade attacks because the current customer portal redirects users from port 80 to the secure site on port 443.
Which of the following would be MOST appropriate to mitigate the attack?
A . DNSSEC
B . HSTS
C . Certificate pinning
D . OCSP
Answer: B